From 043e9f7588708955cda2dc4e269bd0aa1dcd6c1a Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 13 Jul 2026 13:35:16 +0000 Subject: [PATCH] build(deps): bump the actions-deps group across 1 directory with 6 updates Bumps the actions-deps group with 6 updates in the / directory: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `6` | `7` | | [actions/cache](https://github.com/actions/cache) | `5` | `6` | | [snok/container-retention-policy](https://github.com/snok/container-retention-policy) | `3.0.1` | `3.1.0` | | [aws-actions/configure-aws-credentials](https://github.com/aws-actions/configure-aws-credentials) | `6.1.1` | `6.2.2` | | [eviden-actions/get-playwright-version](https://github.com/eviden-actions/get-playwright-version) | `1` | `2` | | [zulip/github-actions-zulip](https://github.com/zulip/github-actions-zulip) | `1` | `2` | Updates `actions/checkout` from 6 to 7 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v6...v7) Updates `actions/cache` from 5 to 6 - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](https://github.com/actions/cache/compare/v5...v6) Updates `snok/container-retention-policy` from 3.0.1 to 3.1.0 - [Release notes](https://github.com/snok/container-retention-policy/releases) - [Commits](https://github.com/snok/container-retention-policy/compare/v3.0.1...v3.1.0) Updates `aws-actions/configure-aws-credentials` from 6.1.1 to 6.2.2 - [Release notes](https://github.com/aws-actions/configure-aws-credentials/releases) - [Changelog](https://github.com/aws-actions/configure-aws-credentials/blob/main/CHANGELOG.md) - [Commits](https://github.com/aws-actions/configure-aws-credentials/compare/v6.1.1...6.2.2) Updates `eviden-actions/get-playwright-version` from 1 to 2 - [Release notes](https://github.com/eviden-actions/get-playwright-version/releases) - [Changelog](https://github.com/atos-actions/get-playwright-version/blob/main/CHANGELOG.md) - [Commits](https://github.com/eviden-actions/get-playwright-version/compare/v1...v2) Updates `zulip/github-actions-zulip` from 1 to 2 - [Release notes](https://github.com/zulip/github-actions-zulip/releases) - [Changelog](https://github.com/zulip/github-actions-zulip/blob/main/CHANGELOG.md) - [Commits](https://github.com/zulip/github-actions-zulip/compare/v1...v2) --- updated-dependencies: - dependency-name: actions/cache dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions-deps - dependency-name: actions/checkout dependency-version: '7' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions-deps - dependency-name: aws-actions/configure-aws-credentials dependency-version: 6.2.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions-deps - dependency-name: eviden-actions/get-playwright-version dependency-version: '2' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions-deps - dependency-name: snok/container-retention-policy dependency-version: 3.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions-deps - dependency-name: zulip/github-actions-zulip dependency-version: '2' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions-deps ... Signed-off-by: dependabot[bot] --- .github/workflows/biome.yml | 4 ++-- .github/workflows/chromatic.yml | 6 +++--- .github/workflows/ci-pr.yml | 2 +- .github/workflows/codeql.yml | 2 +- .github/workflows/darker.yml | 2 +- .github/workflows/find-releases.yml | 2 +- .github/workflows/ghcr-cleanup.yml | 2 +- .github/workflows/locale.yml | 2 +- .github/workflows/nonprod-releases.yml | 4 ++-- .github/workflows/npm-test.yml | 10 +++++----- .github/workflows/openapi.yml | 6 +++--- .github/workflows/pr-environments.yml | 2 +- .github/workflows/pytest.yml | 2 +- .github/workflows/release-1-branch.yml | 2 +- .github/workflows/release-2-stabilize.yml | 8 ++++---- .github/workflows/release-3-tag.yml | 8 ++++---- .github/workflows/release-4-announce.yml | 2 +- .github/workflows/storybook-deploy.yml | 2 +- .github/workflows/zulip.yml | 2 +- 19 files changed, 35 insertions(+), 35 deletions(-) diff --git a/.github/workflows/biome.yml b/.github/workflows/biome.yml index 2ea522103b..603dfa29dd 100644 --- a/.github/workflows/biome.yml +++ b/.github/workflows/biome.yml @@ -8,7 +8,7 @@ jobs: runs-on: ubuntu-24.04 steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - uses: actions/setup-node@v6 with: node-version: '20.19.0' # version that's pinned in Dockerfile for kpi release @@ -21,7 +21,7 @@ jobs: # Cache: Use cache for node_modules # Keyed on os, node version, package-lock, and patches - - uses: actions/cache@v5 + - uses: actions/cache@v6 name: Check for cached node_modules id: cache-nodemodules env: diff --git a/.github/workflows/chromatic.yml b/.github/workflows/chromatic.yml index 52a50168bf..b75de9856b 100644 --- a/.github/workflows/chromatic.yml +++ b/.github/workflows/chromatic.yml @@ -12,7 +12,7 @@ jobs: title: ${{ steps.get-head-commit-title.outputs.title }} sha: ${{ steps.get-head-commit-sha.outputs.sha }} steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 with: fetch-depth: 0 ref: "main" @@ -31,7 +31,7 @@ jobs: outputs: should-run: ${{ steps.should-run.outputs.should-run }} steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 with: ref: "main" - name: Print latest commit @@ -52,7 +52,7 @@ jobs: chromatic-url: ${{ steps.run-chromatic.outputs.url }} steps: - name: Checkout code - uses: actions/checkout@v6 + uses: actions/checkout@v7 with: fetch-depth: 0 ref: "main" diff --git a/.github/workflows/ci-pr.yml b/.github/workflows/ci-pr.yml index 6808d6881f..adb60bbf0c 100644 --- a/.github/workflows/ci-pr.yml +++ b/.github/workflows/ci-pr.yml @@ -8,7 +8,7 @@ jobs: runs-on: ubuntu-24.04 permissions: { pull-requests: read } steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - id: filter uses: dorny/paths-filter@v4 name: Detect changed files diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 4915e6bad9..fa824e4117 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -31,7 +31,7 @@ jobs: build-mode: none steps: - name: Checkout repository - uses: actions/checkout@v6 + uses: actions/checkout@v7 # Add any setup steps before running the `github/codeql-action/init` action. # This includes steps like installing compilers or runtimes (`actions/setup-node` diff --git a/.github/workflows/darker.yml b/.github/workflows/darker.yml index 9aa84ee550..cc79b4e452 100644 --- a/.github/workflows/darker.yml +++ b/.github/workflows/darker.yml @@ -6,7 +6,7 @@ jobs: runs-on: ubuntu-24.04 steps: - name: Checkout code - uses: actions/checkout@v6 + uses: actions/checkout@v7 with: # In addition to checking out the 'merge commit', we also want to # fetch enough commits to find the most recent commit in the base diff --git a/.github/workflows/find-releases.yml b/.github/workflows/find-releases.yml index 019a341513..8b11327e70 100644 --- a/.github/workflows/find-releases.yml +++ b/.github/workflows/find-releases.yml @@ -46,7 +46,7 @@ jobs: next_minor: ${{ steps.version.outputs.next_minor }} next_patch: ${{ steps.version.outputs.next_patch }} steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 with: fetch-depth: 0 fetch-tags: true diff --git a/.github/workflows/ghcr-cleanup.yml b/.github/workflows/ghcr-cleanup.yml index 61d51326d0..d375bb8e65 100644 --- a/.github/workflows/ghcr-cleanup.yml +++ b/.github/workflows/ghcr-cleanup.yml @@ -11,7 +11,7 @@ jobs: permissions: packages: write steps: - - uses: snok/container-retention-policy@v3.0.1 + - uses: snok/container-retention-policy@v3.1.0 with: account: kobotoolbox token: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/locale.yml b/.github/workflows/locale.yml index 75f084bccd..bcc7fc8478 100644 --- a/.github/workflows/locale.yml +++ b/.github/workflows/locale.yml @@ -20,7 +20,7 @@ jobs: ## Setup - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 with: fetch-depth: 0 diff --git a/.github/workflows/nonprod-releases.yml b/.github/workflows/nonprod-releases.yml index 293d841c6e..6dd5fdc162 100644 --- a/.github/workflows/nonprod-releases.yml +++ b/.github/workflows/nonprod-releases.yml @@ -25,14 +25,14 @@ jobs: kpi_image_sha: ${{ steps.sha.outputs.sha }} steps: - name: Checkout code - uses: actions/checkout@v6 + uses: actions/checkout@v7 - name: Store commit SHA id: sha run: echo "sha=${GITHUB_SHA}" >> $GITHUB_OUTPUT - name: Configure AWS Credentials - uses: aws-actions/configure-aws-credentials@v6.1.1 + uses: aws-actions/configure-aws-credentials@6.2.2 with: aws-region: us-east-1 role-to-assume: "arn:aws:iam::917503078660:role/gha_all_repos" diff --git a/.github/workflows/npm-test.yml b/.github/workflows/npm-test.yml index af9df2e0da..1dfe9d4bde 100644 --- a/.github/workflows/npm-test.yml +++ b/.github/workflows/npm-test.yml @@ -8,9 +8,9 @@ jobs: outputs: playwright-version: ${{ steps.get_playwright_version.outputs.playwright-version }} steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - id: get_playwright_version - uses: eviden-actions/get-playwright-version@v1 + uses: eviden-actions/get-playwright-version@v2 build: runs-on: ubuntu-24.04 @@ -27,7 +27,7 @@ jobs: fail-fast: false # Let each job finish steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - uses: actions/setup-node@v6 with: node-version: ${{ matrix.node-version }} @@ -42,7 +42,7 @@ jobs: # Cache: Use cache for node_modules # Keyed on os, node version, package-lock, and patches - - uses: actions/cache@v5 + - uses: actions/cache@v6 name: Check for cached node_modules id: cache-nodemodules env: @@ -94,7 +94,7 @@ jobs: # Install Playwright (with cache) for Storybook tests - name: "Playwright: cache binaries" - uses: actions/cache@v5 + uses: actions/cache@v6 id: playwright-cache with: path: ~/.cache/ms-playwright diff --git a/.github/workflows/openapi.yml b/.github/workflows/openapi.yml index f03ed1053f..c5a8283500 100644 --- a/.github/workflows/openapi.yml +++ b/.github/workflows/openapi.yml @@ -41,7 +41,7 @@ jobs: - 6379:6379 steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - name: Set up Python 3.12 uses: actions/setup-python@v6 @@ -98,7 +98,7 @@ jobs: runs-on: ubuntu-24.04 steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - uses: actions/setup-node@v6 with: node-version: 20.19.0 # version that's pinned in Dockerfile for kpi release. FYI v22 doesn't work out of box. @@ -113,7 +113,7 @@ jobs: # Cache: Use cache for node_modules # Keyed on os, node version, package-lock, and patches - - uses: actions/cache@v5 + - uses: actions/cache@v6 name: Check for cached node_modules id: cache-nodemodules env: diff --git a/.github/workflows/pr-environments.yml b/.github/workflows/pr-environments.yml index 5a3575a6c2..25fa393b46 100644 --- a/.github/workflows/pr-environments.yml +++ b/.github/workflows/pr-environments.yml @@ -49,7 +49,7 @@ jobs: - name: Clone kpi repo at PR branch - uses: actions/checkout@v6 + uses: actions/checkout@v7 with: repository: kobotoolbox/kpi #if the input type is PR, use the branch name from the previous step; otherwise, use the input value directly as the branch name diff --git a/.github/workflows/pytest.yml b/.github/workflows/pytest.yml index 256f5689b4..e3a1b739b4 100644 --- a/.github/workflows/pytest.yml +++ b/.github/workflows/pytest.yml @@ -47,7 +47,7 @@ jobs: ports: - 6379:6379 steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - name: Set up Python ${{ matrix.python-version }} uses: actions/setup-python@v6 with: diff --git a/.github/workflows/release-1-branch.yml b/.github/workflows/release-1-branch.yml index 1a56398084..383695981d 100644 --- a/.github/workflows/release-1-branch.yml +++ b/.github/workflows/release-1-branch.yml @@ -48,7 +48,7 @@ jobs: if: ${{ needs.version.outputs.prev_released == 'true' }} runs-on: ubuntu-24.04 steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - uses: ./.github/actions/checkout-with-github-app-token with: app-id: ${{ secrets.KOBO_BOT_APP_ID }} diff --git a/.github/workflows/release-2-stabilize.yml b/.github/workflows/release-2-stabilize.yml index 2a026ecaae..e567f908fd 100644 --- a/.github/workflows/release-2-stabilize.yml +++ b/.github/workflows/release-2-stabilize.yml @@ -39,7 +39,7 @@ jobs: runs-on: ubuntu-24.04 permissions: { pull-requests: read } steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - id: filter uses: dorny/paths-filter@v4 name: Detect changed files @@ -110,7 +110,7 @@ jobs: CURRENT_PATCH: ${{ needs.version.outputs.current_patch }} steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - uses: ./.github/actions/checkout-with-github-app-token with: app-id: ${{ secrets.KOBO_BOT_APP_ID }} @@ -143,7 +143,7 @@ jobs: runs-on: ubuntu-24.04 steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - uses: ./.github/actions/checkout-with-github-app-token with: app-id: ${{ secrets.KOBO_BOT_APP_ID }} @@ -187,7 +187,7 @@ jobs: runs-on: ubuntu-24.04 steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - uses: ./.github/actions/checkout-with-github-app-token with: app-id: ${{ secrets.KOBO_BOT_APP_ID }} diff --git a/.github/workflows/release-3-tag.yml b/.github/workflows/release-3-tag.yml index a77d08c4fa..8907b6d926 100644 --- a/.github/workflows/release-3-tag.yml +++ b/.github/workflows/release-3-tag.yml @@ -34,7 +34,7 @@ jobs: outputs: version: ${{ steps.version.outputs.version }} steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - name: Formats the version number id: version run: | @@ -82,7 +82,7 @@ jobs: - npm-test if: ${{ !cancelled() && !failure() }} steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - name: deploy to master run: | @@ -100,7 +100,7 @@ jobs: needs: - deploy-to-master steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - name: Bump Kobotoolbox version in kobo-docker repo and tag it run: | @@ -116,7 +116,7 @@ jobs: queue-deploy-to-production: runs-on: ubuntu-24.04 steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - name: create Linear issue to deploy on Global run: | diff --git a/.github/workflows/release-4-announce.yml b/.github/workflows/release-4-announce.yml index c67e625ec6..b5ae9e03ff 100644 --- a/.github/workflows/release-4-announce.yml +++ b/.github/workflows/release-4-announce.yml @@ -11,7 +11,7 @@ jobs: outputs: version: ${{ steps.version.outputs.version }} steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - name: Formats the version number id: version run: | diff --git a/.github/workflows/storybook-deploy.yml b/.github/workflows/storybook-deploy.yml index bc8f5074b8..70c604f52d 100644 --- a/.github/workflows/storybook-deploy.yml +++ b/.github/workflows/storybook-deploy.yml @@ -21,7 +21,7 @@ jobs: url: ${{ steps.deployment.outputs.page_url }} steps: - name: Checkout code - uses: actions/checkout@v6 + uses: actions/checkout@v7 - name: Build Storybook run: | diff --git a/.github/workflows/zulip.yml b/.github/workflows/zulip.yml index 2993771492..77db7b707f 100644 --- a/.github/workflows/zulip.yml +++ b/.github/workflows/zulip.yml @@ -44,7 +44,7 @@ jobs: } >> $GITHUB_OUTPUT - name: Send a stream message - uses: zulip/github-actions-zulip/send-message@v1 + uses: zulip/github-actions-zulip/send-message@v2 with: api-key: ${{ secrets.ZULIP_API_KEY_GITHUB_ACTIONS_BOT }} email: "github-actions-bot@chat.kobotoolbox.org"