From 594e957f8c4722087ead7cf288d004b3c861c08a Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 17 Feb 2026 20:37:07 +0000 Subject: [PATCH 1/2] ci: (deps): bump actions/checkout from 4 to 6 Bumps [actions/checkout](https://github.com/actions/checkout) from 4 to 6. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v4...v6) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/add-source.yml | 2 +- .github/workflows/codeql.yml | 2 +- .github/workflows/dependabot-secure-flow.yaml | 6 +++--- .github/workflows/deploy-pages.yml | 2 +- .github/workflows/manage-subscriber.yml | 2 +- .github/workflows/self-maintenance.yml | 2 +- .github/workflows/summary.yml | 2 +- .github/workflows/sync-to-action-repo.yaml | 4 ++-- .github/workflows/update-ai-pulse.yml | 2 +- 9 files changed, 12 insertions(+), 12 deletions(-) mode change 100755 => 100644 .github/workflows/dependabot-secure-flow.yaml diff --git a/.github/workflows/add-source.yml b/.github/workflows/add-source.yml index 1f9061bd0..2aa53f1d5 100644 --- a/.github/workflows/add-source.yml +++ b/.github/workflows/add-source.yml @@ -13,7 +13,7 @@ jobs: if: github.event.label.name == 'source-approved' runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 - name: Parse issue and add source uses: actions/github-script@v7 diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 72792cc33..dbb273339 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -57,7 +57,7 @@ jobs: # your codebase is analyzed, see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages steps: - name: Checkout repository - uses: actions/checkout@v4 + uses: actions/checkout@v6 # Add any setup steps before running the `github/codeql-action/init` action. # This includes steps like installing compilers or runtimes (`actions/setup-node` diff --git a/.github/workflows/dependabot-secure-flow.yaml b/.github/workflows/dependabot-secure-flow.yaml old mode 100755 new mode 100644 index 24391553d..e739eb970 --- a/.github/workflows/dependabot-secure-flow.yaml +++ b/.github/workflows/dependabot-secure-flow.yaml @@ -39,7 +39,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: fetch-depth: 0 @@ -91,7 +91,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: ref: dependencies fetch-depth: 0 @@ -202,7 +202,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: fetch-depth: 0 diff --git a/.github/workflows/deploy-pages.yml b/.github/workflows/deploy-pages.yml index f2c9e97c9..aea7025cc 100644 --- a/.github/workflows/deploy-pages.yml +++ b/.github/workflows/deploy-pages.yml @@ -30,7 +30,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@v4 + uses: actions/checkout@v6 - name: Setup Pages uses: actions/configure-pages@v5 - name: Upload artifact diff --git a/.github/workflows/manage-subscriber.yml b/.github/workflows/manage-subscriber.yml index 8a8244e89..41657b44a 100644 --- a/.github/workflows/manage-subscriber.yml +++ b/.github/workflows/manage-subscriber.yml @@ -13,7 +13,7 @@ jobs: if: github.event.label.name == 'subscription' runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 - name: Parse and add subscriber uses: actions/github-script@v7 diff --git a/.github/workflows/self-maintenance.yml b/.github/workflows/self-maintenance.yml index dad56dc59..38edfc775 100644 --- a/.github/workflows/self-maintenance.yml +++ b/.github/workflows/self-maintenance.yml @@ -17,7 +17,7 @@ jobs: cancel-in-progress: false steps: - name: Checkout repository - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: fetch-depth: 0 diff --git a/.github/workflows/summary.yml b/.github/workflows/summary.yml index 9b07bb8f8..e88dd31ac 100644 --- a/.github/workflows/summary.yml +++ b/.github/workflows/summary.yml @@ -14,7 +14,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v4 + uses: actions/checkout@v6 - name: Run AI inference id: inference diff --git a/.github/workflows/sync-to-action-repo.yaml b/.github/workflows/sync-to-action-repo.yaml index a392ce424..c8d0f2aa5 100644 --- a/.github/workflows/sync-to-action-repo.yaml +++ b/.github/workflows/sync-to-action-repo.yaml @@ -19,12 +19,12 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout AI-Pulse repository - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: fetch-depth: 1 - name: Checkout dependabot-secure-flow repository - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: repository: EthanThePhoenix38/dependabot-secure-flow token: ${{ secrets.SYNC_TOKEN }} diff --git a/.github/workflows/update-ai-pulse.yml b/.github/workflows/update-ai-pulse.yml index ccd5931c3..003aee640 100644 --- a/.github/workflows/update-ai-pulse.yml +++ b/.github/workflows/update-ai-pulse.yml @@ -118,7 +118,7 @@ jobs: # # Sans cette étape, le workflow n'aurait pas accès aux fichiers ! - name: Check out repository - uses: actions/checkout@v4 + uses: actions/checkout@v6 # @v4 = version 4 de cette action (la plus récente et stable) # ------------------------------------------------------------------------- From 65f65a387f9abba22e5835dcba989d37945f4594 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" Date: Tue, 17 Feb 2026 20:37:50 +0000 Subject: [PATCH 2/2] docs: update release timestamp and changelog --- CHANGELOG.md | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/CHANGELOG.md b/CHANGELOG.md index bb717dd37..4f6310ce3 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -7,6 +7,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [Unreleased] ### Added +- **2026-02-17 20:37 UTC**: Automated Security Batch Update (DependabotSecureFlow) - **2026-02-16 13:00 UTC**: Automated Security Batch Update (DependabotSecureFlow) - 2026-02-16: Validation locale `node --test` (12/12) [OK] - Tests: `node --test` [OK] @@ -42,6 +43,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [1.1.0] - 2026-01-31 ### Added +- **2026-02-17 20:37 UTC**: Automated Security Batch Update (DependabotSecureFlow) - **2026-02-16 13:00 UTC**: Automated Security Batch Update (DependabotSecureFlow) - **2026-02-14 11:26 UTC**: Automated Security Batch Update (DependabotSecureFlow) - **2026-02-13 06:16 UTC**: Automated Security Batch Update (DependabotSecureFlow) @@ -75,6 +77,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [1.2.0] - 2026-02-01 ### Added +- **2026-02-17 20:37 UTC**: Automated Security Batch Update (DependabotSecureFlow) - **2026-02-16 13:00 UTC**: Automated Security Batch Update (DependabotSecureFlow) - **2026-02-14 11:26 UTC**: Automated Security Batch Update (DependabotSecureFlow) - **2026-02-13 06:16 UTC**: Automated Security Batch Update (DependabotSecureFlow) @@ -121,6 +124,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [1.0.0] - 2025-12-10 ### Added +- **2026-02-17 20:37 UTC**: Automated Security Batch Update (DependabotSecureFlow) - **2026-02-16 13:00 UTC**: Automated Security Batch Update (DependabotSecureFlow) - **2026-02-14 11:26 UTC**: Automated Security Batch Update (DependabotSecureFlow) - **2026-02-13 06:16 UTC**: Automated Security Batch Update (DependabotSecureFlow) @@ -160,6 +164,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [Unreleased] - 2026-02-16 ### Added +- **2026-02-17 20:37 UTC**: Automated Security Batch Update (DependabotSecureFlow) - Dedicated categories: `Local News / Informations locales` and `Weather / Météo` with FR/EN labels. - French trusted Open Source feeds: `Developpez.com`, `LinuxFr`, `Programmez`. - Localized keyword mappings for `OpenClaw`, `Local News`, `Weather`, and `Open Source`.