Skip to content

chore(core): update GitHub Actions to latest versions#41

Merged
nerdalytics merged 10 commits into
trunkfrom
automation/update-github-actions
Mar 14, 2026
Merged

chore(core): update GitHub Actions to latest versions#41
nerdalytics merged 10 commits into
trunkfrom
automation/update-github-actions

Conversation

@github-actions
Copy link
Copy Markdown
Contributor

@github-actions github-actions Bot commented Mar 14, 2026

Summary

Automatically updates GitHub Actions to their latest SHA-pinned versions.

Outdated GitHub Actions Detected

The following actions have newer versions available:

Action Current Latest Recommended Update
actions/checkout v6.0.1 v6.0.2 actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
actions/setup-node v6.2.0 v6.3.0 actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
actions/cache v5.0.2 v5.0.3 actions/cache@cdf6c1fa76f9f475f3d7449005a359c84ca0f306 # v5.0.3
biomejs/setup-biome v2.7.0 v2.7.1 biomejs/setup-biome@4c91541eaada48f67d7dbd7833600ce162b68f51 # v2.7.1
actions/upload-artifact v6.0.0 v7.0.0 actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
actions/download-artifact v7.0.0 v8.0.1 actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1

How to Update

Replace each action reference in your workflow files with the SHA-pinned version shown in the "Recommended Update" column.

Why SHA Pinning?

Pinning to a commit SHA prevents supply chain attacks where a malicious actor could move a tag to point to compromised code.

This issue was automatically generated by the Check Action Versions workflow.

This PR was automatically generated by the Check Action Versions workflow.

@nerdalytics
chore(core): whitelist .sh files under .github/ in gitignore
aa6a15c
@nerdalytics
chore(core): add scan-actions.sh — extract action references from wor…
cae7854 
…kflows
@nerdalytics
chore(core): add resolve-latest.sh — fetch latest versions from GitHu…
43c451e 
…b API
@nerdalytics
chore(core): add compare-actions.sh — detect outdated actions by SHA
4e657f3
@nerdalytics
chore(core): add generate-report.sh and apply-updates.sh
3f2f545
@nerdalytics
chore(core): add issue, commit, PR, and cleanup scripts
e2fb838
@nerdalytics
chore(core): rewrite check-action-versions workflow with extracted sc…
0322d02 
…ripts
@nerdalytics
chore(core): update Biome schema to 2.4.7, fix formatting and lint
43ad775
@nerdalytics
chore(core): update 6 GitHub Action(s) to latest versions
5cac72c 
Updates actions to SHA-pinned versions for security.
See workflow file changes for details.
@github-actions github-actions Bot added security Security-related issues dependencies Dependency updates labels Mar 14, 2026
@nerdalytics nerdalytics merged commit acdc478 into trunk Mar 14, 2026
12 checks passed
@nerdalytics nerdalytics deleted the automation/update-github-actions branch March 14, 2026 11:10
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Dependency updates security Security-related issues

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@nerdalytics