Bump the all-actions group across 1 directory with 4 updates

dependabot[bot] · web-flow · commit 233eb4cd3bb3 · 2026-03-29T02:07:40.000Z
Bumps the all-actions group with 4 updates in the / directory: [actions/download-artifact](https://github.com/actions/download-artifact), [digicert/code-signing-software-trust-action](https://github.com/digicert/code-signing-software-trust-action), [actions/upload-artifact](https://github.com/actions/upload-artifact) and [ruby/setup-ruby](https://github.com/ruby/setup-ruby). Updates `actions/download-artifact` from 4.3.0 to 8.0.1 - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](actions/download-artifact@v4.3.0...v8.0.1) Updates `digicert/code-signing-software-trust-action` from 1.1.0 to 1.2.0 - [Release notes](https://github.com/digicert/code-signing-software-trust-action/releases) - [Commits](digicert/code-signing-software-trust-action@v1.1.0...v1.2.0) Updates `actions/upload-artifact` from 4.6.2 to 7.0.0 - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](actions/upload-artifact@v4.6.2...v7) Updates `ruby/setup-ruby` from 1.293.0 to 1.299.0 - [Release notes](https://github.com/ruby/setup-ruby/releases) - [Changelog](https://github.com/ruby/setup-ruby/blob/master/release.rb) - [Commits](ruby/setup-ruby@dffb23f...3ff19f5) --- updated-dependencies: - dependency-name: actions/download-artifact dependency-version: 8.0.1 dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: digicert/code-signing-software-trust-action dependency-version: 1.2.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-actions - dependency-name: actions/upload-artifact dependency-version: 7.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: ruby/setup-ruby dependency-version: 1.299.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-actions ... Signed-off-by: dependabot[bot] <support@github.com>
diff --git a/.github/workflows/binaries.yml b/.github/workflows/binaries.yml
@@ -115,7 +115,7 @@ jobs:
           echo "DEB_PKG_DIR=stellar-cli_${version}_${{ matrix.arch }}" >> $GITHUB_ENV
 
       - name: Download Artifact
-        uses: actions/download-artifact@v8
+        uses: actions/download-artifact@v8.0.1
         with:
           name: ${{ env.ARTIFACT_NAME }}
 
@@ -170,7 +170,7 @@ jobs:
           echo "SM_CLIENT_CERT_FILE=D:\\sm_client_cert.p12" >> "$GITHUB_ENV"
 
       - name: Download Artifact
-        uses: actions/download-artifact@v8
+        uses: actions/download-artifact@v8.0.1
         with:
           name: ${{ env.ARTIFACT_NAME }}
 
@@ -205,7 +205,7 @@ jobs:
         if:
           github.event_name == 'release' || startsWith(github.ref, 'refs/heads/release/') || startsWith(github.head_ref, 'release/')
         id: stm-setup
-        uses: digicert/code-signing-software-trust-action@v1.1.0
+        uses: digicert/code-signing-software-trust-action@v1.2.0
         with:
           simple-signing-mode: true
           keypair-alias: key_1412258126
diff --git a/.github/workflows/docker.yml b/.github/workflows/docker.yml
@@ -40,7 +40,7 @@ jobs:
         run: cargo build --package stellar-cli --release
 
       - name: Upload binary
-        uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4
+        uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
         with:
           name: stellar-${{ matrix.arch }}
           path: target/release/stellar
@@ -58,7 +58,7 @@ jobs:
           fetch-depth: 0
 
       - name: Download binaries
-        uses: actions/download-artifact@d3f86a106a0bac45b974a628896c90dbdf5c8093 # v4
+        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
         with:
           pattern: stellar-*
           merge-multiple: false
diff --git a/.github/workflows/test-install.yml b/.github/workflows/test-install.yml
@@ -26,7 +26,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-      - uses: ruby/setup-ruby@dffb23f65a78bba8db45d387d5ea1bbd6be3ef18 # v1.293.0
+      - uses: ruby/setup-ruby@3ff19f5e2baf30647122352b96108b1fbe250c64 # v1.299.0
         with:
           ruby-version: ruby
       - name: Run install tests
diff --git a/.github/workflows/test-with-openzeppelin-contracts.yml b/.github/workflows/test-with-openzeppelin-contracts.yml
@@ -24,7 +24,7 @@ jobs:
       - run: rustup update
       - run: sudo apt update && sudo apt install -y libudev-dev libdbus-1-dev
       - run: make install
-      - uses: actions/upload-artifact@v7
+      - uses: actions/upload-artifact@v7.0.0
         with:
           name: stellar-cli
           path: ~/.cargo/bin/stellar
@@ -58,7 +58,7 @@ jobs:
       - uses: actions/checkout@v6
         with:
           repository: OpenZeppelin/stellar-contracts
-      - uses: actions/download-artifact@v8
+      - uses: actions/download-artifact@v8.0.1
         with:
           name: stellar-cli
           path: stellar-cli
@@ -89,7 +89,7 @@ jobs:
         id: artifact-name
         run: echo "name=wasm-$(echo ${{ matrix.dir }} | sed 's/\//-/g')${{ matrix.experimental_spec_shaking_v2 && '-spec-shaking-v2' || '' }}" | tee -a $GITHUB_OUTPUT
       - name: Upload WASM artifacts
-        uses: actions/upload-artifact@v7
+        uses: actions/upload-artifact@v7.0.0
         with:
           name: ${{ steps.artifact-name.outputs.name }}
           path: ${{ steps.find-wasm.outputs.wasm }}
diff --git a/.github/workflows/test-with-soroban-examples.yml b/.github/workflows/test-with-soroban-examples.yml
@@ -24,7 +24,7 @@ jobs:
       - run: rustup update
       - run: sudo apt update && sudo apt install -y libudev-dev libdbus-1-dev
       - run: make install
-      - uses: actions/upload-artifact@v7
+      - uses: actions/upload-artifact@v7.0.0
         with:
           name: stellar-cli
           path: ~/.cargo/bin/stellar
@@ -66,7 +66,7 @@ jobs:
         with:
           repository: stellar/soroban-examples
           ref: main
-      - uses: actions/download-artifact@v8
+      - uses: actions/download-artifact@v8.0.1
         with:
           name: stellar-cli
           path: stellar-cli
@@ -97,7 +97,7 @@ jobs:
         id: artifact-name
         run: echo "name=wasm-$(echo ${{ matrix.dir }} | sed 's/\//-/g')${{ matrix.experimental_spec_shaking_v2 && '-spec-shaking-v2' || '' }}" | tee -a $GITHUB_OUTPUT
       - name: Upload WASM artifacts
-        uses: actions/upload-artifact@v7
+        uses: actions/upload-artifact@v7.0.0
         with:
           name: ${{ steps.artifact-name.outputs.name }}
           path: ${{ steps.find-wasm.outputs.wasm }}
