From 9b5bb7c1d3d34eb507cd90e6c103113c885d587e Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 8 Dec 2025 01:04:40 +0000 Subject: [PATCH] Bump the github-actions group across 1 directory with 8 updates Bumps the github-actions group with 8 updates in the / directory: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `6.0.0` | `6.0.1` | | [taiki-e/install-action](https://github.com/taiki-e/install-action) | `2.62.56` | `2.62.63` | | [Swatinem/rust-cache](https://github.com/swatinem/rust-cache) | `2.8.1` | `2.8.2` | | [EmbarkStudios/cargo-deny-action](https://github.com/embarkstudios/cargo-deny-action) | `2.0.13` | `2.0.14` | | [docker/metadata-action](https://github.com/docker/metadata-action) | `5.9.0` | `5.10.0` | | [vmactions/freebsd-vm](https://github.com/vmactions/freebsd-vm) | `1.2.7` | `1.2.9` | | [softprops/action-gh-release](https://github.com/softprops/action-gh-release) | `2.4.2` | `2.5.0` | | [github/codeql-action](https://github.com/github/codeql-action) | `4.31.4` | `4.31.7` | Updates `actions/checkout` from 6.0.0 to 6.0.1 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/1af3b93b6815bc44a9784bd300feb67ff0d1eeb3...8e8c483db84b4bee98b60c0593521ed34d9990e8) Updates `taiki-e/install-action` from 2.62.56 to 2.62.63 - [Release notes](https://github.com/taiki-e/install-action/releases) - [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/taiki-e/install-action/compare/f79fe7514db78f0a7bdba3cb6dd9c1baa7d046d9...50708e9ba8d7b6587a2cb575ddaa9a62e927bc06) Updates `Swatinem/rust-cache` from 2.8.1 to 2.8.2 - [Release notes](https://github.com/swatinem/rust-cache/releases) - [Changelog](https://github.com/Swatinem/rust-cache/blob/master/CHANGELOG.md) - [Commits](https://github.com/swatinem/rust-cache/compare/f13886b937689c021905a6b90929199931d60db1...779680da715d629ac1d338a641029a2f4372abb5) Updates `EmbarkStudios/cargo-deny-action` from 2.0.13 to 2.0.14 - [Release notes](https://github.com/embarkstudios/cargo-deny-action/releases) - [Commits](https://github.com/embarkstudios/cargo-deny-action/compare/f2ba7abc2abebaf185c833c3961145a3c275caad...76cd80eb775d7bbbd2d80292136d74d39e1b4918) Updates `docker/metadata-action` from 5.9.0 to 5.10.0 - [Release notes](https://github.com/docker/metadata-action/releases) - [Commits](https://github.com/docker/metadata-action/compare/318604b99e75e41977312d83839a89be02ca4893...c299e40c65443455700f0fdfc63efafe5b349051) Updates `vmactions/freebsd-vm` from 1.2.7 to 1.2.9 - [Release notes](https://github.com/vmactions/freebsd-vm/releases) - [Commits](https://github.com/vmactions/freebsd-vm/compare/b9c3f24600acdef618ef1c9e2d3c6eeda4dce712...1885b78bae4c4c4b331b4b0461d23cc14cc72387) Updates `softprops/action-gh-release` from 2.4.2 to 2.5.0 - [Release notes](https://github.com/softprops/action-gh-release/releases) - [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md) - [Commits](https://github.com/softprops/action-gh-release/compare/5be0e66d93ac7ed76da52eca8bb058f665c3a5fe...a06a81a03ee405af7f2048a818ed3f03bbf83c7b) Updates `github/codeql-action` from 4.31.4 to 4.31.7 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/e12f0178983d466f2f6028f5cc7a6d786fd97f4b...cf1bb45a277cb3c205638b2cd5c984db1c46a412) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 6.0.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: taiki-e/install-action dependency-version: 2.62.63 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: Swatinem/rust-cache dependency-version: 2.8.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: EmbarkStudios/cargo-deny-action dependency-version: 2.0.14 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: docker/metadata-action dependency-version: 5.10.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: vmactions/freebsd-vm dependency-version: 1.2.9 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: softprops/action-gh-release dependency-version: 2.5.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: github/codeql-action dependency-version: 4.31.7 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions ... Signed-off-by: dependabot[bot] --- .github/workflows/checks.yaml | 32 ++++++++++++++++---------------- .github/workflows/docker.yaml | 4 ++-- .github/workflows/docs.yaml | 2 +- .github/workflows/nightly.yaml | 4 ++-- .github/workflows/packaging.yaml | 8 ++++---- .github/workflows/scorecard.yaml | 4 ++-- 6 files changed, 27 insertions(+), 27 deletions(-) diff --git a/.github/workflows/checks.yaml b/.github/workflows/checks.yaml index e3ea12358..7b7f21ad8 100644 --- a/.github/workflows/checks.yaml +++ b/.github/workflows/checks.yaml @@ -61,7 +61,7 @@ jobs: target: "aarch64-apple-darwin" steps: - name: Checkout sources - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 with: persist-credentials: false - name: Set target rust version @@ -85,11 +85,11 @@ jobs: with: target: ${{ matrix.target }} - name: Install cargo-llvm-cov - uses: taiki-e/install-action@f79fe7514db78f0a7bdba3cb6dd9c1baa7d046d9 + uses: taiki-e/install-action@50708e9ba8d7b6587a2cb575ddaa9a62e927bc06 with: tool: cargo-llvm-cov - name: Rust cache - uses: Swatinem/rust-cache@f13886b937689c021905a6b90929199931d60db1 + uses: Swatinem/rust-cache@779680da715d629ac1d338a641029a2f4372abb5 with: shared-key: "${{matrix.rust}}-${{matrix.target}}" - name: cargo build @@ -114,7 +114,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout sources - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 with: persist-credentials: false - name: Install nightly toolchain @@ -122,7 +122,7 @@ jobs: with: toolchain: nightly - name: Install udeps - uses: taiki-e/install-action@f79fe7514db78f0a7bdba3cb6dd9c1baa7d046d9 + uses: taiki-e/install-action@50708e9ba8d7b6587a2cb575ddaa9a62e927bc06 with: tool: cargo-udeps - name: cargo udeps @@ -136,7 +136,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout sources - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 with: persist-credentials: false - name: ./ntp.toml @@ -157,7 +157,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout sources - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 with: persist-credentials: false - name: Build man pages @@ -170,7 +170,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout sources - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 with: persist-credentials: false - name: Install rust toolchain @@ -205,7 +205,7 @@ jobs: runs-on: ${{matrix.runs_on}} steps: - name: Checkout sources - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 with: persist-credentials: false - name: Install rust toolchain @@ -223,13 +223,13 @@ jobs: if: ${{matrix.runs_on == 'ubuntu-latest'}} - name: Install bindgen-cli - uses: taiki-e/install-action@f79fe7514db78f0a7bdba3cb6dd9c1baa7d046d9 + uses: taiki-e/install-action@50708e9ba8d7b6587a2cb575ddaa9a62e927bc06 with: tool: bindgen-cli if: ${{matrix.runs_on == 'ubuntu-latest'}} - name: Rust cache - uses: Swatinem/rust-cache@f13886b937689c021905a6b90929199931d60db1 + uses: Swatinem/rust-cache@779680da715d629ac1d338a641029a2f4372abb5 with: shared-key: "stable-${{matrix.target}}" @@ -280,7 +280,7 @@ jobs: features: '' steps: - name: Checkout sources - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 with: persist-credentials: false - name: Install nightly toolchain @@ -289,7 +289,7 @@ jobs: toolchain: nightly components: llvm-tools-preview - name: Install cargo fuzz & rustfilt - uses: taiki-e/install-action@f79fe7514db78f0a7bdba3cb6dd9c1baa7d046d9 + uses: taiki-e/install-action@50708e9ba8d7b6587a2cb575ddaa9a62e927bc06 with: tool: cargo-fuzz,rustfilt - name: Run `cargo fuzz` @@ -320,11 +320,11 @@ jobs: name: Audit dependencies runs-on: ubuntu-latest steps: - - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 - - uses: EmbarkStudios/cargo-deny-action@f2ba7abc2abebaf185c833c3961145a3c275caad + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 + - uses: EmbarkStudios/cargo-deny-action@76cd80eb775d7bbbd2d80292136d74d39e1b4918 with: arguments: --workspace --all-features - - uses: EmbarkStudios/cargo-deny-action@f2ba7abc2abebaf185c833c3961145a3c275caad + - uses: EmbarkStudios/cargo-deny-action@76cd80eb775d7bbbd2d80292136d74d39e1b4918 with: manifest-path: ./fuzz/Cargo.toml arguments: --all-features diff --git a/.github/workflows/docker.yaml b/.github/workflows/docker.yaml index 1355b8058..ec1f1330c 100644 --- a/.github/workflows/docker.yaml +++ b/.github/workflows/docker.yaml @@ -12,7 +12,7 @@ jobs: Build: runs-on: ubuntu-latest steps: - - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 - uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # v3.11.1 id: setup-buildx @@ -23,7 +23,7 @@ jobs: username: ${{ github.actor }} password: ${{ secrets.GITHUB_TOKEN }} - - uses: docker/metadata-action@318604b99e75e41977312d83839a89be02ca4893 # v5.9.0 + - uses: docker/metadata-action@c299e40c65443455700f0fdfc63efafe5b349051 # v5.10.0 id: meta with: images: ghcr.io/pendulum-project/ntpd-rs diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml index 06f13efbd..7dd9f34af 100644 --- a/.github/workflows/docs.yaml +++ b/.github/workflows/docs.yaml @@ -20,7 +20,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout sources - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 - name: Build site run: utils/mkdocs.sh --no-bind-port build diff --git a/.github/workflows/nightly.yaml b/.github/workflows/nightly.yaml index bf0f11ae8..99ceafcce 100644 --- a/.github/workflows/nightly.yaml +++ b/.github/workflows/nightly.yaml @@ -19,9 +19,9 @@ jobs: runs-on: ubuntu-latest timeout-minutes: 45 steps: - - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 - name: test on freebsd - uses: vmactions/freebsd-vm@b9c3f24600acdef618ef1c9e2d3c6eeda4dce712 + uses: vmactions/freebsd-vm@1885b78bae4c4c4b331b4b0461d23cc14cc72387 with: usesh: true mem: 4096 diff --git a/.github/workflows/packaging.yaml b/.github/workflows/packaging.yaml index ac24ccac3..2f4f236fe 100644 --- a/.github/workflows/packaging.yaml +++ b/.github/workflows/packaging.yaml @@ -33,12 +33,12 @@ jobs: components: "llvm-tools" - name: Install cross, cargo-deb and cargo-generate-rpm - uses: taiki-e/install-action@f79fe7514db78f0a7bdba3cb6dd9c1baa7d046d9 + uses: taiki-e/install-action@50708e9ba8d7b6587a2cb575ddaa9a62e927bc06 with: tool: cross, cargo-deb, cargo-generate-rpm - name: Checkout sources - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 - name: Build the release binaries run: RELEASE_TARGETS="${{ matrix.target }}" utils/build-release.sh @@ -84,7 +84,7 @@ jobs: contents: write steps: - name: Checkout sources - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 - name: Download artifacts uses: actions/download-artifact@018cc2cf5baa6db3ef3c5f8a56943fffe632ef53 # v6.0.0 @@ -132,7 +132,7 @@ jobs: } >> "$GITHUB_ENV" - name: Create a draft release - uses: softprops/action-gh-release@5be0e66d93ac7ed76da52eca8bb058f665c3a5fe # v2.4.2 + uses: softprops/action-gh-release@a06a81a03ee405af7f2048a818ed3f03bbf83c7b # v2.5.0 with: draft: true fail_on_unmatched_files: true diff --git a/.github/workflows/scorecard.yaml b/.github/workflows/scorecard.yaml index f0c72e7dd..106bcff9f 100644 --- a/.github/workflows/scorecard.yaml +++ b/.github/workflows/scorecard.yaml @@ -25,7 +25,7 @@ jobs: steps: - name: "Checkout code" - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 with: persist-credentials: false @@ -60,6 +60,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard. - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@e12f0178983d466f2f6028f5cc7a6d786fd97f4b # v3.29.5 + uses: github/codeql-action/upload-sarif@cf1bb45a277cb3c205638b2cd5c984db1c46a412 # v3.29.5 with: sarif_file: results.sarif