From 58606e744382863cf4e5d884836d657542cd157f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 1 Aug 2025 00:46:17 +0000 Subject: [PATCH] chore(deps)(deps): bump the all-dependencies group with 3 updates Bumps the all-dependencies group with 3 updates: [astral-sh/setup-uv](https://github.com/astral-sh/setup-uv), [github/codeql-action](https://github.com/github/codeql-action) and [taiki-e/install-action](https://github.com/taiki-e/install-action). Updates `astral-sh/setup-uv` from 6.3.1 to 6.4.3 - [Release notes](https://github.com/astral-sh/setup-uv/releases) - [Commits](https://github.com/astral-sh/setup-uv/compare/bd01e18f51369d5a26f1651c3cb451d3417e3bba...e92bafb6253dcd438e0484186d7669ea7a8ca1cc) Updates `github/codeql-action` from 3.29.2 to 3.29.5 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/181d5eefc20863364f96762470ba6f862bdef56b...51f77329afa6477de8c49fc9c7046c15b9a4e79d) Updates `taiki-e/install-action` from 2.55.3 to 2.57.4 - [Release notes](https://github.com/taiki-e/install-action/releases) - [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/taiki-e/install-action/compare/9ca1734d8940023f074414ee621fd530c4ce10f2...e8c1cf74a696e981aec979a6703471e61b400895) --- updated-dependencies: - dependency-name: astral-sh/setup-uv dependency-version: 6.4.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-dependencies - dependency-name: github/codeql-action dependency-version: 3.29.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: taiki-e/install-action dependency-version: 2.57.4 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-dependencies ... Signed-off-by: dependabot[bot] --- .github/workflows/cron-zizmor.yml | 4 ++-- .github/workflows/unit.yml | 2 +- .github/workflows/zizmor.yml | 2 +- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/cron-zizmor.yml b/.github/workflows/cron-zizmor.yml index e2ca4a0..c49e933 100644 --- a/.github/workflows/cron-zizmor.yml +++ b/.github/workflows/cron-zizmor.yml @@ -22,7 +22,7 @@ jobs: persist-credentials: false - name: Install the latest version of uv - uses: astral-sh/setup-uv@bd01e18f51369d5a26f1651c3cb451d3417e3bba # v6.3.1 + uses: astral-sh/setup-uv@e92bafb6253dcd438e0484186d7669ea7a8ca1cc # v6.4.3 - name: Run zizmor 🌈 run: uvx zizmor --format sarif . > results.sarif @@ -30,7 +30,7 @@ jobs: GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} - name: Upload SARIF file - uses: github/codeql-action/upload-sarif@181d5eefc20863364f96762470ba6f862bdef56b # v3.29.2 + uses: github/codeql-action/upload-sarif@51f77329afa6477de8c49fc9c7046c15b9a4e79d # v3.29.5 with: sarif_file: results.sarif category: zizmor diff --git a/.github/workflows/unit.yml b/.github/workflows/unit.yml index 84a4d3f..ae21c92 100644 --- a/.github/workflows/unit.yml +++ b/.github/workflows/unit.yml @@ -34,7 +34,7 @@ jobs: uses: dtolnay/rust-toolchain@fcf085fcb4b4b8f63f96906cd713eb52181b5ea4 # stable - name: Install latest cargo-nextest release - uses: taiki-e/install-action@9ca1734d8940023f074414ee621fd530c4ce10f2 # v2.55.3 + uses: taiki-e/install-action@e8c1cf74a696e981aec979a6703471e61b400895 # v2.57.4 with: tool: nextest diff --git a/.github/workflows/zizmor.yml b/.github/workflows/zizmor.yml index ff04a23..8b937d2 100644 --- a/.github/workflows/zizmor.yml +++ b/.github/workflows/zizmor.yml @@ -21,7 +21,7 @@ jobs: persist-credentials: false - name: Install the latest version of uv - uses: astral-sh/setup-uv@bd01e18f51369d5a26f1651c3cb451d3417e3bba # v6.3.1 + uses: astral-sh/setup-uv@e92bafb6253dcd438e0484186d7669ea7a8ca1cc # v6.4.3 - name: Run zizmor 🌈 run: uvx zizmor .