diff --git a/.github/.env.base b/.github/.env.base index 9db2fc4..350d110 100644 --- a/.github/.env.base +++ b/.github/.env.base @@ -232,16 +232,16 @@ REDIS_CACHE_FORCE_PULL=false # Force pull Redis images even when cache # đŸĒ„ MAGE-X CONFIGURATION # ================================================================================================ -MAGE_X_VERSION=v1.7.13 # https://github.com/mrz1836/mage-x/releases +MAGE_X_VERSION=v1.7.15 # https://github.com/mrz1836/mage-x/releases MAGE_X_USE_LOCAL=false # Use local version for development MAGE_X_AUTO_DISCOVER_BUILD_TAGS=true # Enable auto-discovery of build tags MAGE_X_AUTO_DISCOVER_BUILD_TAGS_EXCLUDE=race,custom # Comma-separated list of tags to exclude MAGE_X_FORMAT_EXCLUDE_PATHS=vendor,node_modules,.git,.idea # Format exclusion paths (comma-separated directories to exclude from formatting) MAGE_X_GITLEAKS_VERSION=8.29.0 # https://github.com/gitleaks/gitleaks/releases MAGE_X_GOFUMPT_VERSION=v0.9.2 # https://github.com/mvdan/gofumpt/releases -MAGE_X_GOLANGCI_LINT_VERSION=v2.6.1 # https://github.com/golangci/golangci-lint/releases +MAGE_X_GOLANGCI_LINT_VERSION=v2.6.2 # https://github.com/golangci/golangci-lint/releases MAGE_X_GORELEASER_VERSION=v2.12.7 # https://github.com/goreleaser/goreleaser/releases -MAGE_X_GOVULNCHECK_VERSION=v1.1.4 # https://pkg.go.dev/golang.org/x/vuln +MAGE_X_GOVULNCHECK_VERSION=v1.1.4 # https://go.googlesource.com/vuln/+refs MAGE_X_GO_SECONDARY_VERSION=1.24.x # Secondary Go version for MAGE-X (also our secondary) MAGE_X_GO_VERSION=1.24.x # Primary Go version for MAGE-X (also our primary) MAGE_X_MOCKGEN_VERSION=v0.6.0 # https://github.com/uber-go/mock/releases @@ -300,7 +300,7 @@ NANCY_VERSION=v1.0.51 # https://github.com/sonatype-nexus-commu # ================================================================================================ # Pre-Commit System -GO_PRE_COMMIT_VERSION=v1.4.1 # https://github.com/mrz1836/go-pre-commit/releases +GO_PRE_COMMIT_VERSION=v1.4.2 # https://github.com/mrz1836/go-pre-commit/releases GO_PRE_COMMIT_USE_LOCAL=false # Use local version for development # System Settings @@ -319,7 +319,7 @@ GO_PRE_COMMIT_MAX_FILES_OPEN=100 GO_PRE_COMMIT_ALL_FILES=true # Tool Versions -GO_PRE_COMMIT_GOLANGCI_LINT_VERSION=v2.6.1 # https://github.com/golangci/golangci-lint/releases +GO_PRE_COMMIT_GOLANGCI_LINT_VERSION=v2.6.2 # https://github.com/golangci/golangci-lint/releases GO_PRE_COMMIT_FUMPT_VERSION=v0.9.2 # https://github.com/mvdan/gofumpt/releases GO_PRE_COMMIT_GOIMPORTS_VERSION=latest # https://github.com/golang/tools GO_PRE_COMMIT_GITLEAKS_VERSION=v8.29.0 # https://github.com/gitleaks/gitleaks/releases diff --git a/.github/workflows/auto-merge-on-approval.yml b/.github/workflows/auto-merge-on-approval.yml index 68daae5..e26868a 100644 --- a/.github/workflows/auto-merge-on-approval.yml +++ b/.github/workflows/auto-merge-on-approval.yml @@ -65,7 +65,7 @@ jobs: # Check out code to access env file # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout code (sparse) - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 with: sparse-checkout: | .github/.env.base diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 0857ef2..24a2193 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -43,11 +43,11 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@0499de31b99561a6d14a36a5f662c2a54f91beee # v4.31.2 + uses: github/codeql-action/init@014f16e7ab1402f30e7c3329d33797e7948572db # v4.31.3 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -58,7 +58,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@0499de31b99561a6d14a36a5f662c2a54f91beee # v4.31.2 + uses: github/codeql-action/autobuild@014f16e7ab1402f30e7c3329d33797e7948572db # v4.31.3 # ℹī¸ Command-line programs to run using the OS shell. # 📚 https://git.io/JvXDl @@ -68,4 +68,4 @@ jobs: # uses a compiled language - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@0499de31b99561a6d14a36a5f662c2a54f91beee # v4.31.2 + uses: github/codeql-action/analyze@014f16e7ab1402f30e7c3329d33797e7948572db # v4.31.3 diff --git a/.github/workflows/dependabot-auto-merge.yml b/.github/workflows/dependabot-auto-merge.yml index 87f6846..fd0e1bd 100644 --- a/.github/workflows/dependabot-auto-merge.yml +++ b/.github/workflows/dependabot-auto-merge.yml @@ -62,7 +62,7 @@ jobs: # Check out code to access env file # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout code (sparse) - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 with: sparse-checkout: | .github/.env.base diff --git a/.github/workflows/fortress-benchmarks.yml b/.github/workflows/fortress-benchmarks.yml index cfdaf0a..8bda9b6 100644 --- a/.github/workflows/fortress-benchmarks.yml +++ b/.github/workflows/fortress-benchmarks.yml @@ -128,7 +128,7 @@ jobs: # Checkout code and set up Go environment # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout code - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 # -------------------------------------------------------------------- # Setup Go with caching and version management diff --git a/.github/workflows/fortress-code-quality.yml b/.github/workflows/fortress-code-quality.yml index 37ace40..e4902af 100644 --- a/.github/workflows/fortress-code-quality.yml +++ b/.github/workflows/fortress-code-quality.yml @@ -70,7 +70,7 @@ jobs: # Checkout code (required for local actions) # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout code - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 # -------------------------------------------------------------------- # Parse environment variables @@ -216,7 +216,7 @@ jobs: # Checkout code (required for local actions) # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout code - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 # -------------------------------------------------------------------- # Parse environment variables @@ -371,7 +371,7 @@ jobs: # Checkout code (required for local actions) # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout repository - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 # -------------------------------------------------------------------- # Parse environment variables diff --git a/.github/workflows/fortress-completion-finalize.yml b/.github/workflows/fortress-completion-finalize.yml index b857304..3460f7a 100644 --- a/.github/workflows/fortress-completion-finalize.yml +++ b/.github/workflows/fortress-completion-finalize.yml @@ -60,7 +60,7 @@ jobs: # Checkout repository for local actions # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout Repository - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 # -------------------------------------------------------------------- # Parse inputs and setup diff --git a/.github/workflows/fortress-completion-report.yml b/.github/workflows/fortress-completion-report.yml index 8e61186..a27ca37 100644 --- a/.github/workflows/fortress-completion-report.yml +++ b/.github/workflows/fortress-completion-report.yml @@ -116,7 +116,7 @@ jobs: # Checkout repository for local actions # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout Repository - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 # -------------------------------------------------------------------- # Parse environment variables diff --git a/.github/workflows/fortress-completion-statistics.yml b/.github/workflows/fortress-completion-statistics.yml index d48801a..6569795 100644 --- a/.github/workflows/fortress-completion-statistics.yml +++ b/.github/workflows/fortress-completion-statistics.yml @@ -64,7 +64,7 @@ jobs: # Checkout repository for local actions # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout Repository - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 # -------------------------------------------------------------------- # Parse environment variables diff --git a/.github/workflows/fortress-completion-tests.yml b/.github/workflows/fortress-completion-tests.yml index e9ce49d..54222d6 100644 --- a/.github/workflows/fortress-completion-tests.yml +++ b/.github/workflows/fortress-completion-tests.yml @@ -60,7 +60,7 @@ jobs: # Checkout repository for local actions # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout Repository - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 # -------------------------------------------------------------------- # Parse environment variables diff --git a/.github/workflows/fortress-coverage.yml b/.github/workflows/fortress-coverage.yml index c05f67c..b93a226 100644 --- a/.github/workflows/fortress-coverage.yml +++ b/.github/workflows/fortress-coverage.yml @@ -158,7 +158,7 @@ jobs: echo "✅ Branch helper functions created" - name: đŸ“Ĩ Checkout code - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 with: fetch-depth: 0 # Fetch all history including tags for version display @@ -2338,7 +2338,7 @@ jobs: done - name: đŸ“Ĩ Checkout code - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 with: fetch-depth: 2 # Need history for codecov to detect changes diff --git a/.github/workflows/fortress-pre-commit.yml b/.github/workflows/fortress-pre-commit.yml index 5cbb89f..70aaafa 100644 --- a/.github/workflows/fortress-pre-commit.yml +++ b/.github/workflows/fortress-pre-commit.yml @@ -61,7 +61,7 @@ jobs: # Checkout code (full checkout to ensure local actions are available) # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout code - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 with: fetch-depth: 0 # Fetch full history to enable file change detection for all commit ranges diff --git a/.github/workflows/fortress-release.yml b/.github/workflows/fortress-release.yml index 0f98a46..10ffac9 100644 --- a/.github/workflows/fortress-release.yml +++ b/.github/workflows/fortress-release.yml @@ -62,7 +62,7 @@ jobs: # Checkout code and set up Go environment # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout code - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 with: fetch-depth: 0 # Required for changelog generation token: ${{ secrets.github-token }} diff --git a/.github/workflows/fortress-security-scans.yml b/.github/workflows/fortress-security-scans.yml index a4df452..fe489b1 100644 --- a/.github/workflows/fortress-security-scans.yml +++ b/.github/workflows/fortress-security-scans.yml @@ -75,7 +75,7 @@ jobs: # Checkout code (required for local actions) # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout code - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 # -------------------------------------------------------------------- # Parse environment variables @@ -192,7 +192,7 @@ jobs: # Checkout code (required for local actions) # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout code - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 # -------------------------------------------------------------------- # Parse environment variables @@ -345,7 +345,7 @@ jobs: # Checkout code (required for local actions) # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout code - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 with: fetch-depth: 0 # Fetch all history so Gitleaks can scan commits diff --git a/.github/workflows/fortress-setup-config.yml b/.github/workflows/fortress-setup-config.yml index cc4ac8e..e8c99af 100644 --- a/.github/workflows/fortress-setup-config.yml +++ b/.github/workflows/fortress-setup-config.yml @@ -301,7 +301,7 @@ jobs: # Checkout code (sparse checkout) # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout (sparse) - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 with: sparse-checkout: | .mage.yaml diff --git a/.github/workflows/fortress-test-fuzz.yml b/.github/workflows/fortress-test-fuzz.yml index 01319a6..057c1eb 100644 --- a/.github/workflows/fortress-test-fuzz.yml +++ b/.github/workflows/fortress-test-fuzz.yml @@ -66,7 +66,7 @@ jobs: # Checkout code (required for local actions) # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout code - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 # -------------------------------------------------------------------- # Parse environment variables diff --git a/.github/workflows/fortress-test-magex.yml b/.github/workflows/fortress-test-magex.yml index 99330d2..9360e89 100644 --- a/.github/workflows/fortress-test-magex.yml +++ b/.github/workflows/fortress-test-magex.yml @@ -52,14 +52,14 @@ jobs: # Full checkout when using local build (needs cmd/magex directory) - name: đŸ“Ĩ Checkout (full - local build) if: env.MAGE_X_USE_LOCAL == 'true' - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 with: fetch-depth: 0 # Sparse checkout when using remote build (optimization) - name: đŸ“Ĩ Checkout (sparse - remote build) if: env.MAGE_X_USE_LOCAL == 'false' - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 with: fetch-depth: 0 # Required for sparse checkout sparse-checkout: | diff --git a/.github/workflows/fortress-test-matrix.yml b/.github/workflows/fortress-test-matrix.yml index d72efaf..d373114 100644 --- a/.github/workflows/fortress-test-matrix.yml +++ b/.github/workflows/fortress-test-matrix.yml @@ -125,7 +125,7 @@ jobs: # Checkout code (required for local actions) # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout code - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 # -------------------------------------------------------------------- # Parse environment variables diff --git a/.github/workflows/fortress-test-validation.yml b/.github/workflows/fortress-test-validation.yml index 73a558b..19925f8 100644 --- a/.github/workflows/fortress-test-validation.yml +++ b/.github/workflows/fortress-test-validation.yml @@ -55,7 +55,7 @@ jobs: # Checkout code (required for local actions) # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout code - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 # -------------------------------------------------------------------- # Parse environment variables diff --git a/.github/workflows/fortress-warm-cache.yml b/.github/workflows/fortress-warm-cache.yml index 902517b..e339002 100644 --- a/.github/workflows/fortress-warm-cache.yml +++ b/.github/workflows/fortress-warm-cache.yml @@ -80,7 +80,7 @@ jobs: # Checkout code to access local action # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout code - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 with: sparse-checkout: | .github/actions/warm-cache diff --git a/.github/workflows/fortress.yml b/.github/workflows/fortress.yml index 97f004a..b0a50bd 100644 --- a/.github/workflows/fortress.yml +++ b/.github/workflows/fortress.yml @@ -92,7 +92,7 @@ jobs: # Check out code to access env file # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout code (sparse) - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 with: sparse-checkout: | .github/.env.base @@ -411,9 +411,17 @@ jobs: name: 🚀 Release Version needs: [load-env, setup, test-magex, test-suite, security, code-quality, pre-commit] # Only run on successful tag pushes from same repository (not forks) + # Allow release even if test-suite was skipped (when ENABLE_GO_TESTS=false) if: | + !cancelled() && startsWith(github.ref, 'refs/tags/v') && - needs.setup.outputs.is-fork-pr != 'true' + needs.setup.outputs.is-fork-pr != 'true' && + needs.setup.result == 'success' && + needs.test-magex.result == 'success' && + (needs.test-suite.result == 'success' || needs.test-suite.result == 'skipped') && + needs.security.result == 'success' && + needs.code-quality.result == 'success' && + needs.pre-commit.result == 'success' uses: ./.github/workflows/fortress-release.yml with: env-json: ${{ needs.load-env.outputs.env-json }} diff --git a/.github/workflows/pull-request-management-fork.yml b/.github/workflows/pull-request-management-fork.yml index 5578d1b..1e41d22 100644 --- a/.github/workflows/pull-request-management-fork.yml +++ b/.github/workflows/pull-request-management-fork.yml @@ -141,7 +141,7 @@ jobs: # codeql:ignore GH001 # checkov:skip=CKV_GHA_3:Base branch checkout is intentional and safe - name: đŸ“Ĩ Checkout base repo (sparse) - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 with: # ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ # 🔒 CRITICAL SECURITY CONTROL: Base Branch Checkout Only diff --git a/.github/workflows/pull-request-management.yml b/.github/workflows/pull-request-management.yml index 6ba09c8..38a92b5 100644 --- a/.github/workflows/pull-request-management.yml +++ b/.github/workflows/pull-request-management.yml @@ -68,7 +68,7 @@ jobs: # Check out code to access env file # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout code (sparse) - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 with: sparse-checkout: | .github/.env.base diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 737f732..ce724fa 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -39,7 +39,7 @@ jobs: steps: - name: "Checkout code" - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 with: persist-credentials: false @@ -78,6 +78,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard (optional). # Commenting out will disable the upload of results to your repo's Code Scanning dashboard - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@0499de31b99561a6d14a36a5f662c2a54f91beee # v4.31.2 + uses: github/codeql-action/upload-sarif@014f16e7ab1402f30e7c3329d33797e7948572db # v4.31.3 with: sarif_file: results.sarif diff --git a/.github/workflows/stale-check.yml b/.github/workflows/stale-check.yml index 1f34cf8..f61afd5 100644 --- a/.github/workflows/stale-check.yml +++ b/.github/workflows/stale-check.yml @@ -52,7 +52,7 @@ jobs: # Check out code to access env file # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout code (sparse) - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 with: sparse-checkout: | .github/.env.base diff --git a/.github/workflows/sync-labels.yml b/.github/workflows/sync-labels.yml index 5c05c23..eafe183 100644 --- a/.github/workflows/sync-labels.yml +++ b/.github/workflows/sync-labels.yml @@ -65,7 +65,7 @@ jobs: # Check out code to access env file # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout code (sparse) - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 with: sparse-checkout: | .github/.env.base @@ -135,7 +135,7 @@ jobs: # Checkout repository # -------------------------------------------------------------------- - name: đŸ“Ĩ Checkout code - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 with: fetch-depth: 2 # Fetch enough history to check parent commits