From 4ce99a319083c466b159d556638f20ae22f5e21c Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 6 May 2024 22:05:14 +0000 Subject: [PATCH] Bump actions/checkout from 4.1.4 to 4.1.5 Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.4 to 4.1.5. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/0ad4b8fadaa221de15dcec353f45205ec38ea70b...44c2b7a8a4ea60a981eaca3cf939b5f4305c123b) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- .github/workflows/codeql-analysis.yml | 2 +- .github/workflows/deploy-hato-bot.yml | 8 ++++---- .github/workflows/format-json-yml.yml | 2 +- .github/workflows/github-actions-cache-cleaner.yml | 2 +- .github/workflows/pr-check-npm.yml | 4 ++-- .github/workflows/pr-copy-ci-hato-bot.yml | 2 +- .github/workflows/pr-format.yml | 2 +- .github/workflows/pr-merge-develop-hato-bot.yml | 2 +- .github/workflows/pr-release-hato-bot.yml | 2 +- .github/workflows/pr-test-hato-bot.yml | 2 +- .github/workflows/pr-test.yml | 4 ++-- .github/workflows/pr-update-gitleaks.yml | 2 +- .github/workflows/update-readme-hato-bot.yml | 2 +- 13 files changed, 18 insertions(+), 18 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index b8a4b92f95..09b570b7a0 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -41,7 +41,7 @@ jobs: # Learn more about CodeQL language support at https://aka.ms/codeql-docs/language-support steps: - name: Checkout repository - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 - name: Set up Python uses: actions/setup-python@82c7e631bb3cdc910f68e0081d67478d79c6982d # v5.1.0 if: matrix.language == 'python' diff --git a/.github/workflows/deploy-hato-bot.yml b/.github/workflows/deploy-hato-bot.yml index 954586cf0b..1ea9fe2d72 100644 --- a/.github/workflows/deploy-hato-bot.yml +++ b/.github/workflows/deploy-hato-bot.yml @@ -26,7 +26,7 @@ jobs: packages: write if: github.event_name == 'release' || (github.event_name == 'pull_request' && github.event.action != 'closed' && github.repository == github.event.pull_request.head.repo.full_name) steps: - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 with: fetch-depth: 0 - name: Set .env @@ -111,7 +111,7 @@ jobs: needs: deploy_docker_image if: always() && (needs.deploy_docker_image.result == 'success' || (github.event_name == 'pull_request' && github.event.action == 'closed')) steps: - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 if: github.event_name != 'pull_request' || github.event.action != 'closed' with: fetch-depth: 0 @@ -130,7 +130,7 @@ jobs: update-dockle: runs-on: ubuntu-latest steps: - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 if: github.event_name != 'pull_request' || github.event.action != 'closed' with: fetch-depth: 0 @@ -147,7 +147,7 @@ jobs: DOCKER_CONTENT_TRUST: 1 REPOSITORY: ${{github.repository}} steps: - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 - run: bash "${GITHUB_WORKSPACE}/scripts/deploy_hato_bot/dockle/run_dockle.sh" env: HEAD_REF: ${{github.head_ref || github.event.release.tag_name}} diff --git a/.github/workflows/format-json-yml.yml b/.github/workflows/format-json-yml.yml index ceaf513de1..6dc032ca25 100644 --- a/.github/workflows/format-json-yml.yml +++ b/.github/workflows/format-json-yml.yml @@ -24,7 +24,7 @@ jobs: with: app-id: ${{ secrets.PROJECT_AUTOMATION_APP_ID }} private-key: ${{ secrets.PROJECT_AUTOMATION_PRIVATE_KEY }} - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 if: github.event_name != 'pull_request' || github.event.action != 'closed' with: fetch-depth: 0 diff --git a/.github/workflows/github-actions-cache-cleaner.yml b/.github/workflows/github-actions-cache-cleaner.yml index 1c602ed305..a690dabe25 100644 --- a/.github/workflows/github-actions-cache-cleaner.yml +++ b/.github/workflows/github-actions-cache-cleaner.yml @@ -12,7 +12,7 @@ jobs: github-actions-cache-cleaner: runs-on: ubuntu-latest steps: - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 - uses: dev-hato/github-actions-cache-cleaner@bf3e1871745e2ccb18fc684672d5deb78bb76579 # v0.0.40 with: github-token: ${{secrets.GITHUB_TOKEN}} diff --git a/.github/workflows/pr-check-npm.yml b/.github/workflows/pr-check-npm.yml index 32abd3a43d..ab209aebe4 100644 --- a/.github/workflows/pr-check-npm.yml +++ b/.github/workflows/pr-check-npm.yml @@ -21,7 +21,7 @@ jobs: contents: write pull-requests: write steps: - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 if: github.event_name != 'pull_request' || github.event.action != 'closed' with: fetch-depth: 0 @@ -45,7 +45,7 @@ jobs: runs-on: ubuntu-latest needs: pr-update-version steps: - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 if: github.event_name != 'pull_request' || github.event.action != 'closed' with: # ここでsubmodule持ってくるとdetached headにcommitして死ぬ diff --git a/.github/workflows/pr-copy-ci-hato-bot.yml b/.github/workflows/pr-copy-ci-hato-bot.yml index 0daf59fbe6..8142fbfe3b 100644 --- a/.github/workflows/pr-copy-ci-hato-bot.yml +++ b/.github/workflows/pr-copy-ci-hato-bot.yml @@ -9,7 +9,7 @@ jobs: pr-copy-ci: runs-on: ubuntu-latest steps: - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 - name: Generate a token id: generate_token uses: actions/create-github-app-token@a0de6af83968303c8c955486bf9739a57d23c7f1 # v1.10.0 diff --git a/.github/workflows/pr-format.yml b/.github/workflows/pr-format.yml index 331f4f3313..15e81b3875 100644 --- a/.github/workflows/pr-format.yml +++ b/.github/workflows/pr-format.yml @@ -19,7 +19,7 @@ jobs: pr-format: runs-on: ubuntu-latest steps: - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 if: github.event_name != 'pull_request' || github.event.action != 'closed' with: # ここでsubmodule持ってくるとdetached headにcommitして死ぬ diff --git a/.github/workflows/pr-merge-develop-hato-bot.yml b/.github/workflows/pr-merge-develop-hato-bot.yml index a18d9d7812..a322a5f871 100644 --- a/.github/workflows/pr-merge-develop-hato-bot.yml +++ b/.github/workflows/pr-merge-develop-hato-bot.yml @@ -10,7 +10,7 @@ jobs: pr-master-to-develop: runs-on: ubuntu-latest steps: - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 with: fetch-depth: 0 - name: Get PullRequests diff --git a/.github/workflows/pr-release-hato-bot.yml b/.github/workflows/pr-release-hato-bot.yml index c25bb9e4f0..ab92ea0a6f 100644 --- a/.github/workflows/pr-release-hato-bot.yml +++ b/.github/workflows/pr-release-hato-bot.yml @@ -9,7 +9,7 @@ jobs: pr-release: runs-on: ubuntu-latest steps: - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 with: fetch-depth: 0 - name: Get diff diff --git a/.github/workflows/pr-test-hato-bot.yml b/.github/workflows/pr-test-hato-bot.yml index a007b145cd..3abb984e7f 100644 --- a/.github/workflows/pr-test-hato-bot.yml +++ b/.github/workflows/pr-test-hato-bot.yml @@ -13,7 +13,7 @@ jobs: pr-test: runs-on: ubuntu-latest steps: - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 with: submodules: "recursive" - name: Set up Python diff --git a/.github/workflows/pr-test.yml b/.github/workflows/pr-test.yml index c74ca05142..78f3d7f82d 100644 --- a/.github/workflows/pr-test.yml +++ b/.github/workflows/pr-test.yml @@ -10,7 +10,7 @@ jobs: pr-super-lint: runs-on: ubuntu-latest steps: - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 with: submodules: "recursive" fetch-depth: 0 @@ -46,7 +46,7 @@ jobs: pr-dotenv-linter: runs-on: ubuntu-latest steps: - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 with: submodules: "recursive" fetch-depth: 0 diff --git a/.github/workflows/pr-update-gitleaks.yml b/.github/workflows/pr-update-gitleaks.yml index f62126abe9..aa2dd955eb 100644 --- a/.github/workflows/pr-update-gitleaks.yml +++ b/.github/workflows/pr-update-gitleaks.yml @@ -17,7 +17,7 @@ jobs: pr-update-gitleaks: runs-on: ubuntu-latest steps: - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 if: github.event_name != 'pull_request' || github.event.action != 'closed' with: fetch-depth: 0 diff --git a/.github/workflows/update-readme-hato-bot.yml b/.github/workflows/update-readme-hato-bot.yml index c00ec35bff..5f9d8041fa 100644 --- a/.github/workflows/update-readme-hato-bot.yml +++ b/.github/workflows/update-readme-hato-bot.yml @@ -14,7 +14,7 @@ jobs: update-readme: runs-on: ubuntu-latest steps: - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 if: github.event_name != 'pull_request' || github.event.action != 'closed' with: fetch-depth: 0