diff --git a/.github/workflows/backport.yml b/.github/workflows/backport.yml index 71590cfbcc..1ca3b87cc6 100644 --- a/.github/workflows/backport.yml +++ b/.github/workflows/backport.yml @@ -14,7 +14,7 @@ jobs: if: github.event.pull_request.merged runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: persist-credentials: true diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 74bdb85f70..9726b111b1 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -32,7 +32,7 @@ jobs: CMAKE_URL: 'https://cmake.org/files/v3.16/cmake-3.16.0-Linux-x86_64.sh' CMAKE_VERSION: '3.16.0' steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: persist-credentials: false @@ -64,7 +64,7 @@ jobs: use-existing-src: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: persist-credentials: false diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 66fbbb461e..8f7484f4dc 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -24,18 +24,18 @@ jobs: security-events: write steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: persist-credentials: false - uses: ./.github/actions/setup - name: Initialize CodeQL - uses: github/codeql-action/init@v4.36.0 + uses: github/codeql-action/init@v4.36.1 with: languages: cpp - run: make - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v4.36.0 + uses: github/codeql-action/analyze@v4.36.1 diff --git a/.github/workflows/coverity.yml b/.github/workflows/coverity.yml index 15c4495c07..cae1f4c619 100644 --- a/.github/workflows/coverity.yml +++ b/.github/workflows/coverity.yml @@ -11,7 +11,7 @@ jobs: scan: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: persist-credentials: false diff --git a/.github/workflows/docs.yml b/.github/workflows/docs.yml index 172a9d4d02..b8bdccf295 100644 --- a/.github/workflows/docs.yml +++ b/.github/workflows/docs.yml @@ -13,7 +13,7 @@ jobs: contents: write pull-requests: write steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: persist-credentials: false - uses: ./.github/actions/setup diff --git a/.github/workflows/labeler_pr.yml b/.github/workflows/labeler_pr.yml index c70137b89c..3d6b49dd84 100644 --- a/.github/workflows/labeler_pr.yml +++ b/.github/workflows/labeler_pr.yml @@ -13,7 +13,7 @@ jobs: contents: read pull-requests: write steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: persist-credentials: false diff --git a/.github/workflows/lintcommit.yml b/.github/workflows/lintcommit.yml index 14473b0c93..b6bacb3ff5 100644 --- a/.github/workflows/lintcommit.yml +++ b/.github/workflows/lintcommit.yml @@ -13,7 +13,7 @@ jobs: runs-on: ubuntu-latest if: github.event.pull_request.draft == false steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: fetch-depth: 0 ref: ${{ github.event.pull_request.head.sha }} diff --git a/.github/workflows/lintdocurls.yml b/.github/workflows/lintdocurls.yml index b3ef07b8d2..6fb9cd740e 100644 --- a/.github/workflows/lintdocurls.yml +++ b/.github/workflows/lintdocurls.yml @@ -14,7 +14,7 @@ jobs: env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: fetch-depth: 0 persist-credentials: false diff --git a/.github/workflows/news.yml b/.github/workflows/news.yml index f80a36445a..99ad933eb1 100644 --- a/.github/workflows/news.yml +++ b/.github/workflows/news.yml @@ -19,7 +19,7 @@ jobs: github.event.label.name == 'ci:skip-news' ) steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: fetch-depth: 0 ref: ${{ github.event.pull_request.head.sha }} diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 6f10d702fe..ca156771e2 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -58,7 +58,7 @@ jobs: outputs: version: ${{ steps.build.outputs.version }} steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: # Perform a full checkout #13471 fetch-depth: 0 @@ -113,7 +113,7 @@ jobs: CMAKE_BUILD_TYPE: ${{ needs.setup.outputs.build_type }} MACOSX_DEPLOYMENT_TARGET: 11.0 steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: # Perform a full checkout #13471 fetch-depth: 0 @@ -158,7 +158,7 @@ jobs: env: CMAKE_BUILD_TYPE: ${{ needs.setup.outputs.build_type }} steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: # Perform a full checkout #13471 fetch-depth: 0 @@ -201,7 +201,7 @@ jobs: steps: # Must perform checkout first, since it deletes the target directory # before running, and would therefore delete the downloaded artifacts - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: persist-credentials: false diff --git a/.github/workflows/response.yml b/.github/workflows/response.yml index f96dce8fdf..4b86af9ea0 100644 --- a/.github/workflows/response.yml +++ b/.github/workflows/response.yml @@ -15,7 +15,7 @@ jobs: issues: write pull-requests: write steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: persist-credentials: false @@ -32,7 +32,7 @@ jobs: issues: write pull-requests: write steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: persist-credentials: false diff --git a/.github/workflows/reviewers_add.yml b/.github/workflows/reviewers_add.yml index a268479bee..910460670a 100644 --- a/.github/workflows/reviewers_add.yml +++ b/.github/workflows/reviewers_add.yml @@ -17,7 +17,7 @@ jobs: permissions: pull-requests: write steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: persist-credentials: false diff --git a/.github/workflows/reviewers_remove.yml b/.github/workflows/reviewers_remove.yml index afe4c1d6e0..3bfb9bb81d 100644 --- a/.github/workflows/reviewers_remove.yml +++ b/.github/workflows/reviewers_remove.yml @@ -11,7 +11,7 @@ jobs: permissions: pull-requests: write steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: persist-credentials: false diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index 15da1ffcbf..e3011d3c40 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -36,7 +36,7 @@ jobs: env: CC: clang steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: persist-credentials: false @@ -100,7 +100,7 @@ jobs: env: CC: clang steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: persist-credentials: false @@ -148,7 +148,7 @@ jobs: CC: ${{ matrix.build.cc }} NVIM_TEST_INTEG: ${{ matrix.build.flavor == 'release' && '1' || '0' }} steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: persist-credentials: false @@ -250,7 +250,7 @@ jobs: # NB: tests assume there is a chosen install path, but nothing needs to be actually installed OPTS: -Doptimize=ReleaseSafe -Dinstall-path=/usr/ steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: persist-credentials: false @@ -278,7 +278,7 @@ jobs: env: OPTS: -Dinstall-path=/usr/ steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: persist-credentials: false @@ -297,7 +297,7 @@ jobs: timeout-minutes: 45 name: build using zig build (windows) steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: persist-credentials: false @@ -321,7 +321,7 @@ jobs: env: CC: gcc steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: persist-credentials: false diff --git a/.github/workflows/test_windows.yml b/.github/workflows/test_windows.yml index 5a8db64cd3..0372f432d0 100644 --- a/.github/workflows/test_windows.yml +++ b/.github/workflows/test_windows.yml @@ -21,7 +21,7 @@ jobs: matrix: test: [functional, old] steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: persist-credentials: false diff --git a/.github/workflows/vim_patches.yml b/.github/workflows/vim_patches.yml index 29beaf14e7..82273702bc 100644 --- a/.github/workflows/vim_patches.yml +++ b/.github/workflows/vim_patches.yml @@ -17,12 +17,12 @@ jobs: VERSION_BRANCH: marvim/ci-version-update GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} steps: - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: fetch-depth: 0 persist-credentials: false - - uses: actions/checkout@v6.0.2 + - uses: actions/checkout@v6.0.3 with: repository: vim/vim path: ${{ env.VIM_SOURCE_DIR }} diff --git a/.github/workflows/zizmor.yml b/.github/workflows/zizmor.yml index 262db67487..dc16d20650 100644 --- a/.github/workflows/zizmor.yml +++ b/.github/workflows/zizmor.yml @@ -16,7 +16,7 @@ jobs: security-events: write # Required for upload-sarif (used by zizmor-action) to upload SARIF files. steps: - name: Checkout repository - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: persist-credentials: false