diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index bfc372c..2c6fe4d 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -59,7 +59,7 @@ jobs: --health-retries 5 steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - uses: actions/setup-node@v6 with: diff --git a/.github/workflows/markdownlint.yml b/.github/workflows/markdownlint.yml index ee6b4a0..59d99fc 100644 --- a/.github/workflows/markdownlint.yml +++ b/.github/workflows/markdownlint.yml @@ -35,7 +35,7 @@ jobs: name: Markdown lint runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - uses: actions/setup-node@v6 with: diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml index a976dbb..1cf9b5e 100644 --- a/.github/workflows/security.yml +++ b/.github/workflows/security.yml @@ -55,7 +55,7 @@ jobs: container: image: semgrep/semgrep steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 # Registry rule packs tuned for this stack. p/typescript + p/react # cover the UI; p/nextjs flags Next.js-specific API auth gaps; @@ -194,7 +194,7 @@ jobs: contents: read pull-requests: write steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - name: Install osv-scanner run: | @@ -300,7 +300,7 @@ jobs: permissions: contents: read steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v7 - name: Build production image run: |