From ed9cae377a87a849ce41a63e10425b276471ad5b Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 1 Jan 2026 23:16:23 +0000 Subject: [PATCH] build(deps): bump the actions-infrastructure group across 1 directory with 3 updates Bumps the actions-infrastructure group with 3 updates in the / directory: [actions/checkout](https://github.com/actions/checkout), [actions/upload-artifact](https://github.com/actions/upload-artifact) and [actions/download-artifact](https://github.com/actions/download-artifact). Updates `actions/checkout` from 5 to 6 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v5...v6) Updates `actions/upload-artifact` from 5 to 6 - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/v5...v6) Updates `actions/download-artifact` from 6 to 7 - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](https://github.com/actions/download-artifact/compare/v6...v7) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions-infrastructure - dependency-name: actions/upload-artifact dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions-infrastructure - dependency-name: actions/download-artifact dependency-version: '7' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions-infrastructure ... Signed-off-by: dependabot[bot] --- .github/workflows/codespell.yml | 2 +- .github/workflows/gh-pages.yml | 2 +- .github/workflows/package.yml | 12 ++++++------ 3 files changed, 8 insertions(+), 8 deletions(-) diff --git a/.github/workflows/codespell.yml b/.github/workflows/codespell.yml index e7e058d..4aeaa93 100644 --- a/.github/workflows/codespell.yml +++ b/.github/workflows/codespell.yml @@ -14,6 +14,6 @@ jobs: steps: - name: Checkout - uses: actions/checkout@v5 + uses: actions/checkout@v6 - name: Codespell uses: codespell-project/actions-codespell@v2 diff --git a/.github/workflows/gh-pages.yml b/.github/workflows/gh-pages.yml index 5f16842..00e49da 100644 --- a/.github/workflows/gh-pages.yml +++ b/.github/workflows/gh-pages.yml @@ -8,7 +8,7 @@ jobs: build: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 - name: Set up uv uses: astral-sh/setup-uv@v7 - name: Sync environment diff --git a/.github/workflows/package.yml b/.github/workflows/package.yml index e894b4c..55eee10 100644 --- a/.github/workflows/package.yml +++ b/.github/workflows/package.yml @@ -33,7 +33,7 @@ jobs: attestations: write id-token: write steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 with: fetch-depth: 0 - uses: hynek/build-and-inspect-python-package@v2 @@ -41,7 +41,7 @@ jobs: path: bsmschema attest-build-provenance-github: ${{ github.event_name != 'pull_request' }} - name: Upload uv.lock - uses: actions/upload-artifact@v5 + uses: actions/upload-artifact@v6 with: name: Lockfile path: | @@ -61,20 +61,20 @@ jobs: DEPENDS: ${{ matrix.dependencies }} steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 if: matrix.source == 'repo' with: submodules: recursive fetch-depth: 0 - name: Download packages built by build-and-inspect-python-package if: matrix.source == 'sdist' - uses: actions/download-artifact@v6 + uses: actions/download-artifact@v7 with: name: Packages path: dist - name: Download lockfile if: matrix.source == 'sdist' - uses: actions/download-artifact@v6 + uses: actions/download-artifact@v7 with: name: Lockfile - name: Extract sdist @@ -114,7 +114,7 @@ jobs: steps: - name: Download packages built by build-and-inspect-python-package - uses: actions/download-artifact@v6 + uses: actions/download-artifact@v7 with: name: Packages path: dist