diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 9fa25e4..7da8de8 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -27,7 +27,7 @@ jobs: if: github.event.repository.visibility == 'public' runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v7 - uses: github/codeql-action/init@v3 with: languages: python diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml index 7c7dfe4..f8af146 100644 --- a/.github/workflows/security.yml +++ b/.github/workflows/security.yml @@ -24,7 +24,7 @@ jobs: # venv, which is both faster and avoids ensurepip flakiness. runs-on: macos-14 steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v7 - uses: astral-sh/setup-uv@v5 with: enable-cache: true @@ -37,7 +37,7 @@ jobs: # key needed for public repos. runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v7 with: fetch-depth: 0 - name: gitleaks diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml index ef7e59e..a6f309d 100644 --- a/.github/workflows/tests.yml +++ b/.github/workflows/tests.yml @@ -22,7 +22,7 @@ jobs: lint: runs-on: macos-14 steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v7 - uses: astral-sh/setup-uv@v5 with: enable-cache: true @@ -39,7 +39,7 @@ jobs: matrix: python: ["3.11", "3.12", "3.13"] steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v7 - uses: astral-sh/setup-uv@v5 with: enable-cache: true @@ -57,7 +57,7 @@ jobs: # it into a lock-free venv, then confirm the console script resolves. runs-on: macos-14 steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v7 - uses: astral-sh/setup-uv@v5 with: enable-cache: true @@ -74,7 +74,7 @@ jobs: # so it runs on a cheap linux runner. runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v7 - uses: astral-sh/setup-uv@v5 - name: Lockfile is up to date run: uv lock --check