From 342b5f0de86bb7b7c01e73149fac42696de7a205 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 22 Apr 2026 09:04:09 +0000 Subject: [PATCH] Upgrade: [dependabot] - bump actions/checkout from 4.3.1 to 6.0.2 Bumps [actions/checkout](https://github.com/actions/checkout) from 4.3.1 to 6.0.2. - [Release notes](https://github.com/actions/checkout/releases) - [Commits](https://github.com/actions/checkout/compare/v4.3.1...v6.0.2) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 6.0.2 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/error_handling_utils_tests.yml | 2 +- .github/workflows/my-vaccs-int-tests.yml | 2 +- .github/workflows/performance_tests.yml | 2 +- .github/workflows/quality-checks.yml | 4 ++-- .github/workflows/regression_tests.yml | 2 +- .github/workflows/release.yml | 2 +- 6 files changed, 7 insertions(+), 7 deletions(-) diff --git a/.github/workflows/error_handling_utils_tests.yml b/.github/workflows/error_handling_utils_tests.yml index 1fb45b13..8b09644d 100644 --- a/.github/workflows/error_handling_utils_tests.yml +++ b/.github/workflows/error_handling_utils_tests.yml @@ -14,7 +14,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@v6 + uses: actions/checkout@v6.0.2 - name: Set up Python uses: actions/setup-python@v6 diff --git a/.github/workflows/my-vaccs-int-tests.yml b/.github/workflows/my-vaccs-int-tests.yml index 45d7fc7c..09ddb7f6 100644 --- a/.github/workflows/my-vaccs-int-tests.yml +++ b/.github/workflows/my-vaccs-int-tests.yml @@ -43,7 +43,7 @@ jobs: echo "Workflow triggered by allowed repository: $CALLER_REPO" - name: Checkout main - uses: actions/checkout@v6 + uses: actions/checkout@v6.0.2 with: repository: NHSDigital/eligibility-signposting-api-regression-tests ref: main diff --git a/.github/workflows/performance_tests.yml b/.github/workflows/performance_tests.yml index 41e9c44f..de9d7666 100644 --- a/.github/workflows/performance_tests.yml +++ b/.github/workflows/performance_tests.yml @@ -52,7 +52,7 @@ jobs: echo "spawn_rate: ${spawn_rate}" - name: Checkout - uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # using git commit sha for version of action to ensure we have stable version - name: Install asdf diff --git a/.github/workflows/quality-checks.yml b/.github/workflows/quality-checks.yml index f85a7902..62cf81aa 100644 --- a/.github/workflows/quality-checks.yml +++ b/.github/workflows/quality-checks.yml @@ -11,7 +11,7 @@ jobs: runs-on: ubuntu-22.04 steps: - name: Checkout code - uses: actions/checkout@v6 + uses: actions/checkout@v6.0.2 with: ref: ${{ github.event.pull_request.head.sha || github.sha }} fetch-depth: 0 @@ -69,7 +69,7 @@ jobs: .git - name: SonarQube - uses: actions/checkout@v6 + uses: actions/checkout@v6.0.2 with: ref: ${{ github.event.pull_request.head.sha || github.sha }} fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis diff --git a/.github/workflows/regression_tests.yml b/.github/workflows/regression_tests.yml index 4fc51ffc..369c1409 100644 --- a/.github/workflows/regression_tests.yml +++ b/.github/workflows/regression_tests.yml @@ -123,7 +123,7 @@ jobs: echo run identifier "$ID"-"$ENV" >> "$GITHUB_STEP_SUMMARY" - name: Checkout - uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd with: ref: ${{ inputs.github_tag }} diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index ddd73750..8f704f73 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -30,7 +30,7 @@ jobs: spec_version: ${{steps.output_version_tag.outputs.SPEC_VERSION}} steps: - name: Checkout code - uses: actions/checkout@v6 + uses: actions/checkout@v6.0.2 with: ref: ${{ env.BRANCH_NAME }} fetch-depth: 0