diff --git a/.github/workflows/backport.yml b/.github/workflows/backport.yml index 728a6f85d3..3c3a9f885f 100644 --- a/.github/workflows/backport.yml +++ b/.github/workflows/backport.yml @@ -34,7 +34,7 @@ jobs: permission-contents: write permission-pull-requests: write - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 with: token: ${{ steps.app-token.outputs.token }} ref: ${{ github.event.pull_request.head.sha }} diff --git a/.github/workflows/flakehub-publish-rolling.yml b/.github/workflows/flakehub-publish-rolling.yml index 914948e20c..57ee403638 100644 --- a/.github/workflows/flakehub-publish-rolling.yml +++ b/.github/workflows/flakehub-publish-rolling.yml @@ -14,7 +14,7 @@ jobs: id-token: "write" contents: "read" steps: - - uses: "actions/checkout@v5" + - uses: "actions/checkout@v6" - uses: "DeterminateSystems/nix-installer-action@main" - uses: "DeterminateSystems/flakehub-push@main" with: diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index 338b2c0858..26864370ab 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -18,7 +18,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@v5 + uses: actions/checkout@v6 - name: Install Nix uses: cachix/install-nix-action@v31 - name: Run treefmt check diff --git a/.github/workflows/pr-merged.yml b/.github/workflows/pr-merged.yml index 1589d26383..0230593ace 100644 --- a/.github/workflows/pr-merged.yml +++ b/.github/workflows/pr-merged.yml @@ -75,7 +75,7 @@ jobs: # This ensures we get the latest scripts, even if the PR's base was outdated. - name: Checkout base branch id: checkout - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: sparse-checkout: | flake/dev/diff-plugins.py diff --git a/.github/workflows/tag-maintainers.yml b/.github/workflows/tag-maintainers.yml index 48ae8ec7b2..bb09ecbf02 100644 --- a/.github/workflows/tag-maintainers.yml +++ b/.github/workflows/tag-maintainers.yml @@ -40,7 +40,7 @@ jobs: # Checkout the code from the base branch. # This is a security measure for `pull_request_target` to run trusted code. - name: Checkout code - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: ref: ${{ github.base_ref }} diff --git a/.github/workflows/update-maintainers.yml b/.github/workflows/update-maintainers.yml index 1d248d1993..13ee8e2fbc 100644 --- a/.github/workflows/update-maintainers.yml +++ b/.github/workflows/update-maintainers.yml @@ -60,7 +60,7 @@ jobs: } >> "$GITHUB_OUTPUT" - name: Checkout repository - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: token: ${{ steps.app-token.outputs.token || github.token }} diff --git a/.github/workflows/update-other.yml b/.github/workflows/update-other.yml index a1c8a0240c..0603989e3b 100644 --- a/.github/workflows/update-other.yml +++ b/.github/workflows/update-other.yml @@ -22,7 +22,7 @@ jobs: branches: ${{ steps.list-branches.outputs.result }} steps: - name: Checkout version-info - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: sparse-checkout: version-info.toml sparse-checkout-cone-mode: false diff --git a/.github/workflows/update.yml b/.github/workflows/update.yml index 69f32ce713..fb4a40bcba 100644 --- a/.github/workflows/update.yml +++ b/.github/workflows/update.yml @@ -79,7 +79,7 @@ jobs: git config --global user.email "$email" - name: Checkout repository - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: token: ${{ steps.app-token.outputs.token }} diff --git a/.github/workflows/website.yml b/.github/workflows/website.yml index a8cac168be..8174bc3ae3 100644 --- a/.github/workflows/website.yml +++ b/.github/workflows/website.yml @@ -27,7 +27,7 @@ jobs: steps: - name: Checkout version-info - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: sparse-checkout: version-info.toml sparse-checkout-cone-mode: false @@ -95,7 +95,7 @@ jobs: authToken: ${{ secrets.CACHIX_AUTH_TOKEN }} - name: Checkout - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: ref: ${{ matrix.ref }}