diff --git a/.github/workflows/package-build.yml b/.github/workflows/package-build.yml index 8ee85822..a2155b16 100644 --- a/.github/workflows/package-build.yml +++ b/.github/workflows/package-build.yml @@ -27,7 +27,7 @@ jobs: - uses: actions/checkout@v4 with: fetch-depth: 0 - - uses: hynek/build-and-inspect-python-package@v2.7.0 + - uses: hynek/build-and-inspect-python-package@v2.8.0 id: build-pkg with: attest-build-provenance-github: ${{ !(github.event.pull_request.head.repo.fork || github.event.workflow_call.pull_request.head.repo.fork) && github.actor != 'dependabot[bot]' }} diff --git a/.github/workflows/package-release.yml b/.github/workflows/package-release.yml index d7421093..c37b1385 100644 --- a/.github/workflows/package-release.yml +++ b/.github/workflows/package-release.yml @@ -82,7 +82,7 @@ jobs: python scripts/check_unreleased_changelog_items.py git config --global tag.gpgSign true - name: Python Semantic Release - uses: python-semantic-release/python-semantic-release@v9.8.3 + uses: python-semantic-release/python-semantic-release@v9.8.6 id: release with: force: ${{ inputs.release_level }} @@ -109,7 +109,7 @@ jobs: ref: main # Make sure to check out the latest commit on main, not the original commit that triggered the workflow fetch-depth: 0 - name: Build package - uses: hynek/build-and-inspect-python-package@v2.7.0 + uses: hynek/build-and-inspect-python-package@v2.8.0 with: attest-build-provenance-github: 'true' upload-testpypi: diff --git a/.github/workflows/package-testpypi.yml b/.github/workflows/package-testpypi.yml index e2a619f0..294cc597 100644 --- a/.github/workflows/package-testpypi.yml +++ b/.github/workflows/package-testpypi.yml @@ -54,7 +54,7 @@ jobs: python scripts/project_version.py --set-version=$NEW_VERSION echo "NEW_VERSION=$NEW_VERSION" >> $GITHUB_OUTPUT - name: Build package - uses: hynek/build-and-inspect-python-package@v2.7.0 + uses: hynek/build-and-inspect-python-package@v2.8.0 with: attest-build-provenance-github: 'true' outputs: