Skip to content

Commit 334fd3e

Browse files
renovate[bot]renovate[bot]
authored
[deps]: Update gh minor (#97)
This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [Swatinem/rust-cache](https://redirect.github.com/Swatinem/rust-cache) | action | patch | `v2.7.5` -> `v2.7.7` | | [actions/setup-java](https://redirect.github.com/actions/setup-java) | action | minor | `v4.5.0` -> `v4.7.0` | | [actions/setup-node](https://redirect.github.com/actions/setup-node) | action | minor | `v4.1.0` -> `v4.2.0` | | [actions/upload-artifact](https://redirect.github.com/actions/upload-artifact) | action | minor | `v4.4.3` -> `v4.6.0` | | [checkmarx/ast-github-action](https://redirect.github.com/checkmarx/ast-github-action) | action | patch | `2.0.39` -> `2.0.42` | | [codecov/codecov-action](https://redirect.github.com/codecov/codecov-action) | action | minor | `v5.1.2` -> `v5.3.1` | | [github/codeql-action](https://redirect.github.com/github/codeql-action) | action | minor | `v3.27.6` -> `v3.28.8` | | [gradle/actions](https://redirect.github.com/gradle/actions) | action | minor | `v4.2.1` -> `v4.3.0` | | [ncipollo/release-action](https://redirect.github.com/ncipollo/release-action) | action | minor | `v1.14.0` -> `v1.15.0` | --- ### Release Notes <details> <summary>Swatinem/rust-cache (Swatinem/rust-cache)</summary> ### [`v2.7.7`](https://redirect.github.com/Swatinem/rust-cache/releases/tag/v2.7.7) [Compare Source](https://redirect.github.com/Swatinem/rust-cache/compare/v2.7.6...v2.7.7) **Full Changelog**: Swatinem/rust-cache@v2.7.6...v2.7.7 ### [`v2.7.6`](https://redirect.github.com/Swatinem/rust-cache/releases/tag/v2.7.6) [Compare Source](https://redirect.github.com/Swatinem/rust-cache/compare/v2.7.5...v2.7.6) #### What's Changed - Updated artifact upload action to v4 by [@&#8203;guylamar2006](https://redirect.github.com/guylamar2006) in [https://github.com/Swatinem/rust-cache/pull/212](https://redirect.github.com/Swatinem/rust-cache/pull/212) - Adds an option to do lookup-only of the cache by [@&#8203;danlec](https://redirect.github.com/danlec) in [https://github.com/Swatinem/rust-cache/pull/217](https://redirect.github.com/Swatinem/rust-cache/pull/217) - add runner OS in cache key by [@&#8203;rnbguy](https://redirect.github.com/rnbguy) in [https://github.com/Swatinem/rust-cache/pull/220](https://redirect.github.com/Swatinem/rust-cache/pull/220) - Allow opting out of caching $CARGO_HOME/bin. by [@&#8203;benjyw](https://redirect.github.com/benjyw) in [https://github.com/Swatinem/rust-cache/pull/216](https://redirect.github.com/Swatinem/rust-cache/pull/216) #### New Contributors - [@&#8203;guylamar2006](https://redirect.github.com/guylamar2006) made their first contribution in [https://github.com/Swatinem/rust-cache/pull/212](https://redirect.github.com/Swatinem/rust-cache/pull/212) - [@&#8203;danlec](https://redirect.github.com/danlec) made their first contribution in [https://github.com/Swatinem/rust-cache/pull/217](https://redirect.github.com/Swatinem/rust-cache/pull/217) - [@&#8203;rnbguy](https://redirect.github.com/rnbguy) made their first contribution in [https://github.com/Swatinem/rust-cache/pull/220](https://redirect.github.com/Swatinem/rust-cache/pull/220) - [@&#8203;benjyw](https://redirect.github.com/benjyw) made their first contribution in [https://github.com/Swatinem/rust-cache/pull/216](https://redirect.github.com/Swatinem/rust-cache/pull/216) **Full Changelog**: Swatinem/rust-cache@v2.7.5...v2.7.6 </details> <details> <summary>actions/setup-java (actions/setup-java)</summary> ### [`v4.7.0`](https://redirect.github.com/actions/setup-java/releases/tag/v4.7.0) [Compare Source](https://redirect.github.com/actions/setup-java/compare/v4.6.0...v4.7.0) ##### What's Changed - Configure Dependabot settings by [@&#8203;HarithaVattikuti](https://redirect.github.com/HarithaVattikuti) in [https://github.com/actions/setup-java/pull/722](https://redirect.github.com/actions/setup-java/pull/722) - README Update: Added a permissions section by [@&#8203;benwells](https://redirect.github.com/benwells) in [https://github.com/actions/setup-java/pull/723](https://redirect.github.com/actions/setup-java/pull/723) - Upgrade `cache` from version 3.2.4 to 4.0.0 by [@&#8203;aparnajyothi-y](https://redirect.github.com/aparnajyothi-y) in [https://github.com/actions/setup-java/pull/724](https://redirect.github.com/actions/setup-java/pull/724) - Upgrade `@actions/http-client` from 2.2.1 to 2.2.3 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/actions/setup-java/pull/728](https://redirect.github.com/actions/setup-java/pull/728) - Upgrade `actions/publish-immutable-action` from 0.0.3 to 0.0.4 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/actions/setup-java/pull/727](https://redirect.github.com/actions/setup-java/pull/727) - Upgrade `@types/jest` from 29.5.12 to 29.5.14 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/actions/setup-java/pull/729](https://redirect.github.com/actions/setup-java/pull/729) ##### New Contributors - [@&#8203;benwells](https://redirect.github.com/benwells) made their first contribution in [https://github.com/actions/setup-java/pull/723](https://redirect.github.com/actions/setup-java/pull/723) **Full Changelog**: actions/setup-java@v4...v4.7.0 ### [`v4.6.0`](https://redirect.github.com/actions/setup-java/releases/tag/v4.6.0) [Compare Source](https://redirect.github.com/actions/setup-java/compare/v4.5.0...v4.6.0) #### What's Changed **Add-ons:** - Add Support for JetBrains Runtime by [@&#8203;gmitch215](https://redirect.github.com/gmitch215) in [https://github.com/actions/setup-java/pull/637](https://redirect.github.com/actions/setup-java/pull/637) ```steps: - name: Checkout uses: actions/checkout@v4 - name: Setup-java uses: actions/setup-java@v4 with: distribution: ‘jetbrains’ java-version: '21' ``` **Bug fixes:** - Fix Ubuntu-latest CI failures by [@&#8203;mahabaleshwars](https://redirect.github.com/mahabaleshwars) in [https://github.com/actions/setup-java/pull/693](https://redirect.github.com/actions/setup-java/pull/693) #### New Contributors - [@&#8203;gmitch215](https://redirect.github.com/gmitch215) made their first contribution in [https://github.com/actions/setup-java/pull/637](https://redirect.github.com/actions/setup-java/pull/637) **Full Changelog**: actions/setup-java@v4...v4.6.0 </details> <details> <summary>actions/setup-node (actions/setup-node)</summary> ### [`v4.2.0`](https://redirect.github.com/actions/setup-node/compare/v4.1.0...v4.2.0) [Compare Source](https://redirect.github.com/actions/setup-node/compare/v4.1.0...v4.2.0) </details> <details> <summary>actions/upload-artifact (actions/upload-artifact)</summary> ### [`v4.6.0`](https://redirect.github.com/actions/upload-artifact/releases/tag/v4.6.0) [Compare Source](https://redirect.github.com/actions/upload-artifact/compare/v4.5.0...v4.6.0) #### What's Changed - Expose env vars to control concurrency and timeout by [@&#8203;yacaovsnc](https://redirect.github.com/yacaovsnc) in [https://github.com/actions/upload-artifact/pull/662](https://redirect.github.com/actions/upload-artifact/pull/662) **Full Changelog**: actions/upload-artifact@v4...v4.6.0 ### [`v4.5.0`](https://redirect.github.com/actions/upload-artifact/compare/v4.4.3...v4.5.0) [Compare Source](https://redirect.github.com/actions/upload-artifact/compare/v4.4.3...v4.5.0) </details> <details> <summary>checkmarx/ast-github-action (checkmarx/ast-github-action)</summary> ### [`v2.0.42`](https://redirect.github.com/Checkmarx/ast-github-action/releases/tag/2.0.42) [Compare Source](https://redirect.github.com/checkmarx/ast-github-action/compare/2.0.41...2.0.42) <!-- Release notes generated using configuration in .github/release.yml at 2.0.42 --> #### What's Changed ##### Other Changes - Update CLI version by [@&#8203;AlvoBen](https://redirect.github.com/AlvoBen) in [https://github.com/Checkmarx/ast-github-action/pull/215](https://redirect.github.com/Checkmarx/ast-github-action/pull/215) **Full Changelog**: Checkmarx/ast-github-action@2.0.41...2.0.42 ### [`v2.0.41`](https://redirect.github.com/Checkmarx/ast-github-action/releases/tag/2.0.41) [Compare Source](https://redirect.github.com/checkmarx/ast-github-action/compare/2.0.40...2.0.41) <!-- Release notes generated using configuration in .github/release.yml at 2.0.41 --> #### What's Changed ##### Other Changes - Update CLI to version 2.3.9 by [@&#8203;AlvoBen](https://redirect.github.com/AlvoBen) in [https://github.com/Checkmarx/ast-github-action/pull/213](https://redirect.github.com/Checkmarx/ast-github-action/pull/213) **Full Changelog**: Checkmarx/ast-github-action@2.0.40...2.0.41 ### [`v2.0.40`](https://redirect.github.com/Checkmarx/ast-github-action/releases/tag/2.0.40) [Compare Source](https://redirect.github.com/checkmarx/ast-github-action/compare/2.0.39...2.0.40) <!-- Release notes generated using configuration in .github/release.yml at 2.0.40 --> #### What's Changed ##### Other Changes - fix health check vul by [@&#8203;AlvoBen](https://redirect.github.com/AlvoBen) in [https://github.com/Checkmarx/ast-github-action/pull/210](https://redirect.github.com/Checkmarx/ast-github-action/pull/210) - Update Dockerfile by [@&#8203;AlvoBen](https://redirect.github.com/AlvoBen) in [https://github.com/Checkmarx/ast-github-action/pull/212](https://redirect.github.com/Checkmarx/ast-github-action/pull/212) **Full Changelog**: Checkmarx/ast-github-action@2.0.39...2.0.40 </details> <details> <summary>codecov/codecov-action (codecov/codecov-action)</summary> ### [`v5.3.1`](https://redirect.github.com/codecov/codecov-action/blob/HEAD/CHANGELOG.md#v531) [Compare Source](https://redirect.github.com/codecov/codecov-action/compare/v5.3.0...v5.3.1) ##### What's Changed **Full Changelog**: https://github.com/codecov/codecov-action/compare/v5.3.0..v5.3.1 ### [`v5.3.0`](https://redirect.github.com/codecov/codecov-action/blob/HEAD/CHANGELOG.md#v530) [Compare Source](https://redirect.github.com/codecov/codecov-action/compare/v5.2.0...v5.3.0) ##### What's Changed **Full Changelog**: https://github.com/codecov/codecov-action/compare/v5.2.0..v5.3.0 ### [`v5.2.0`](https://redirect.github.com/codecov/codecov-action/blob/HEAD/CHANGELOG.md#v520) [Compare Source](https://redirect.github.com/codecov/codecov-action/compare/v5.1.2...v5.2.0) ##### What's Changed - Fix typo in README by [@&#8203;tserg](https://redirect.github.com/tserg) in [https://github.com/codecov/codecov-action/pull/1747](https://redirect.github.com/codecov/codecov-action/pull/1747) - Th/add commands by [@&#8203;thomasrockhu-codecov](https://redirect.github.com/thomasrockhu-codecov) in [https://github.com/codecov/codecov-action/pull/1745](https://redirect.github.com/codecov/codecov-action/pull/1745) - use correct audience when requesting oidc token by [@&#8203;juho9000](https://redirect.github.com/juho9000) in [https://github.com/codecov/codecov-action/pull/1744](https://redirect.github.com/codecov/codecov-action/pull/1744) - build(deps): bump github/codeql-action from 3.27.9 to 3.28.1 by [@&#8203;app/dependabot](https://redirect.github.com/app/dependabot) in [https://github.com/codecov/codecov-action/pull/1742](https://redirect.github.com/codecov/codecov-action/pull/1742) - build(deps): bump actions/upload-artifact from 4.4.3 to 4.6.0 by [@&#8203;app/dependabot](https://redirect.github.com/app/dependabot) in [https://github.com/codecov/codecov-action/pull/1743](https://redirect.github.com/codecov/codecov-action/pull/1743) - chore(deps): bump wrapper to 0.0.32 by [@&#8203;thomasrockhu-codecov](https://redirect.github.com/thomasrockhu-codecov) in [https://github.com/codecov/codecov-action/pull/1740](https://redirect.github.com/codecov/codecov-action/pull/1740) - feat: add disable-telem feature by [@&#8203;thomasrockhu-codecov](https://redirect.github.com/thomasrockhu-codecov) in [https://github.com/codecov/codecov-action/pull/1739](https://redirect.github.com/codecov/codecov-action/pull/1739) - fix: remove erroneous linebreak in readme by [@&#8203;Vampire](https://redirect.github.com/Vampire) in [https://github.com/codecov/codecov-action/pull/1734](https://redirect.github.com/codecov/codecov-action/pull/1734) **Full Changelog**: https://github.com/codecov/codecov-action/compare/v5.1.2..v5.2.0 </details> <details> <summary>github/codeql-action (github/codeql-action)</summary> ### [`v3.28.8`](https://redirect.github.com/github/codeql-action/releases/tag/v3.28.8) [Compare Source](https://redirect.github.com/github/codeql-action/compare/v3.28.7...v3.28.8) ### CodeQL Action Changelog See the [releases page](https://redirect.github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. #### 3.28.8 - 29 Jan 2025 - Enable support for Kotlin 2.1.10 when running with CodeQL CLI v2.20.3. [#&#8203;2744](https://redirect.github.com/github/codeql-action/pull/2744) See the full [CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.28.8/CHANGELOG.md) for more information. ### [`v3.28.7`](https://redirect.github.com/github/codeql-action/releases/tag/v3.28.7) [Compare Source](https://redirect.github.com/github/codeql-action/compare/v3.28.6...v3.28.7) ### CodeQL Action Changelog See the [releases page](https://redirect.github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. #### 3.28.7 - 29 Jan 2025 No user facing changes. See the full [CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.28.7/CHANGELOG.md) for more information. ### [`v3.28.6`](https://redirect.github.com/github/codeql-action/releases/tag/v3.28.6) [Compare Source](https://redirect.github.com/github/codeql-action/compare/v3.28.5...v3.28.6) ### CodeQL Action Changelog See the [releases page](https://redirect.github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. #### 3.28.6 - 27 Jan 2025 - Re-enable debug artifact upload for CLI versions 2.20.3 or greater. [#&#8203;2726](https://redirect.github.com/github/codeql-action/pull/2726) See the full [CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.28.6/CHANGELOG.md) for more information. ### [`v3.28.5`](https://redirect.github.com/github/codeql-action/releases/tag/v3.28.5) [Compare Source](https://redirect.github.com/github/codeql-action/compare/v3.28.4...v3.28.5) ### CodeQL Action Changelog See the [releases page](https://redirect.github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. #### 3.28.5 - 24 Jan 2025 - Update default CodeQL bundle version to 2.20.3. [#&#8203;2717](https://redirect.github.com/github/codeql-action/pull/2717) See the full [CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.28.5/CHANGELOG.md) for more information. ### [`v3.28.4`](https://redirect.github.com/github/codeql-action/releases/tag/v3.28.4) [Compare Source](https://redirect.github.com/github/codeql-action/compare/v3.28.3...v3.28.4) ##### CodeQL Action Changelog See the [releases page](https://redirect.github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. ##### 3.28.4 - 23 Jan 2025 No user facing changes. See the full [CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.28.4/CHANGELOG.md) for more information. ### [`v3.28.3`](https://redirect.github.com/github/codeql-action/releases/tag/v3.28.3) [Compare Source](https://redirect.github.com/github/codeql-action/compare/v3.28.2...v3.28.3) ##### CodeQL Action Changelog See the [releases page](https://redirect.github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. ##### 3.28.3 - 22 Jan 2025 - Update default CodeQL bundle version to 2.20.2. [#&#8203;2707](https://redirect.github.com/github/codeql-action/pull/2707) - Fix an issue downloading the CodeQL Bundle from a GitHub Enterprise Server instance which occurred when the CodeQL Bundle had been synced to the instance using the [CodeQL Action sync tool](https://redirect.github.com/github/codeql-action-sync-tool) and the Actions runner did not have Zstandard installed. [#&#8203;2710](https://redirect.github.com/github/codeql-action/pull/2710) - Uploading debug artifacts for CodeQL analysis is temporarily disabled. [#&#8203;2712](https://redirect.github.com/github/codeql-action/pull/2712) See the full [CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.28.3/CHANGELOG.md) for more information. ### [`v3.28.2`](https://redirect.github.com/github/codeql-action/releases/tag/v3.28.2) [Compare Source](https://redirect.github.com/github/codeql-action/compare/v3.28.1...v3.28.2) ##### CodeQL Action Changelog See the [releases page](https://redirect.github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. ##### 3.28.2 - 21 Jan 2025 No user facing changes. See the full [CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.28.2/CHANGELOG.md) for more information. ### [`v3.28.1`](https://redirect.github.com/github/codeql-action/releases/tag/v3.28.1) [Compare Source](https://redirect.github.com/github/codeql-action/compare/v3.28.0...v3.28.1) ##### CodeQL Action Changelog See the [releases page](https://redirect.github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. ##### 3.28.1 - 10 Jan 2025 - CodeQL Action v2 is now deprecated, and is no longer updated or supported. For better performance, improved security, and new features, upgrade to v3. For more information, see [this changelog post](https://github.blog/changelog/2025-01-10-code-scanning-codeql-action-v2-is-now-deprecated/). [#&#8203;2677](https://redirect.github.com/github/codeql-action/pull/2677) - Update default CodeQL bundle version to 2.20.1. [#&#8203;2678](https://redirect.github.com/github/codeql-action/pull/2678) See the full [CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.28.1/CHANGELOG.md) for more information. ### [`v3.28.0`](https://redirect.github.com/github/codeql-action/releases/tag/v3.28.0) [Compare Source](https://redirect.github.com/github/codeql-action/compare/v3.27.9...v3.28.0) ##### CodeQL Action Changelog See the [releases page](https://redirect.github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. Note that the only difference between `v2` and `v3` of the CodeQL Action is the node version they support, with `v3` running on node 20 while we continue to release `v2` to support running on node 16. For example `3.22.11` was the first `v3` release and is functionally identical to `2.22.11`. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers. ##### 3.28.0 - 20 Dec 2024 - Bump the minimum CodeQL bundle version to 2.15.5. [#&#8203;2655](https://redirect.github.com/github/codeql-action/pull/2655) - Don't fail in the unusual case that a file is on the search path. [#&#8203;2660](https://redirect.github.com/github/codeql-action/pull/2660). See the full [CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.28.0/CHANGELOG.md) for more information. ### [`v3.27.9`](https://redirect.github.com/github/codeql-action/releases/tag/v3.27.9) [Compare Source](https://redirect.github.com/github/codeql-action/compare/v3.27.8...v3.27.9) ##### CodeQL Action Changelog See the [releases page](https://redirect.github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. Note that the only difference between `v2` and `v3` of the CodeQL Action is the node version they support, with `v3` running on node 20 while we continue to release `v2` to support running on node 16. For example `3.22.11` was the first `v3` release and is functionally identical to `2.22.11`. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers. ##### 3.27.9 - 12 Dec 2024 No user facing changes. See the full [CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.27.9/CHANGELOG.md) for more information. ### [`v3.27.8`](https://redirect.github.com/github/codeql-action/compare/v3.27.7...v3.27.8) [Compare Source](https://redirect.github.com/github/codeql-action/compare/v3.27.7...v3.27.8) ### [`v3.27.7`](https://redirect.github.com/github/codeql-action/releases/tag/v3.27.7) [Compare Source](https://redirect.github.com/github/codeql-action/compare/v3.27.6...v3.27.7) ##### CodeQL Action Changelog See the [releases page](https://redirect.github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. Note that the only difference between `v2` and `v3` of the CodeQL Action is the node version they support, with `v3` running on node 20 while we continue to release `v2` to support running on node 16. For example `3.22.11` was the first `v3` release and is functionally identical to `2.22.11`. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers. ##### 3.27.7 - 10 Dec 2024 - We are rolling out a change in December 2024 that will extract the CodeQL bundle directly to the toolcache to improve performance. [#&#8203;2631](https://redirect.github.com/github/codeql-action/pull/2631) - Update default CodeQL bundle version to 2.20.0. [#&#8203;2636](https://redirect.github.com/github/codeql-action/pull/2636) See the full [CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.27.7/CHANGELOG.md) for more information. </details> <details> <summary>gradle/actions (gradle/actions)</summary> ### [`v4.3.0`](https://redirect.github.com/gradle/actions/releases/tag/v4.3.0) [Compare Source](https://redirect.github.com/gradle/actions/compare/v4.2.2...v4.3.0) This release brings some significant improvements to cache-cleanup and dependency-submission: - Cleanup cache entries written by newly released Gradle versions ([#&#8203;436](https://redirect.github.com/gradle/actions/issues/436)) - Use existing Gradle wrapper distribution for cache-cleanup where possible ([#&#8203;515](https://redirect.github.com/gradle/actions/issues/515)) - Automatically save each dependency-graph that is submitted by `dependency-submission` ([#&#8203;519](https://redirect.github.com/gradle/actions/issues/519)) - Fix deprecation warnings emitted by Gradle 8.12+ when: - Using `build-scan-publish: true` or Develocity injection ([#&#8203;543](https://redirect.github.com/gradle/actions/issues/543)) - Using dependency-submission with an authenticated plugin repository with Gradle ([#&#8203;541](https://redirect.github.com/gradle/actions/issues/541)) - Fix warning when using toolchain support with Gradle 7.x ([#&#8203;511](https://redirect.github.com/gradle/actions/issues/511)) ##### What's Changed - Update known wrapper checksums by [@&#8203;github-actions](https://redirect.github.com/github-actions) in [https://github.com/gradle/actions/pull/493](https://redirect.github.com/gradle/actions/pull/493) - Fix typo in `cache-reporting.ts` by [@&#8203;SimonMarquis](https://redirect.github.com/SimonMarquis) in [https://github.com/gradle/actions/pull/492](https://redirect.github.com/gradle/actions/pull/492) - Bump Gradle Wrappers by [@&#8203;github-actions](https://redirect.github.com/github-actions) in [https://github.com/gradle/actions/pull/499](https://redirect.github.com/gradle/actions/pull/499) - Bump the github-actions group across 3 directories with 7 updates by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/gradle/actions/pull/510](https://redirect.github.com/gradle/actions/pull/510) - Bump the npm-dependencies group across 1 directory with 6 updates by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/gradle/actions/pull/512](https://redirect.github.com/gradle/actions/pull/512) - Clean-up missing imports for tests by [@&#8203;bigdaz](https://redirect.github.com/bigdaz) in [https://github.com/gradle/actions/pull/513](https://redirect.github.com/gradle/actions/pull/513) - Bump the npm-dependencies group in /sources with 3 updates by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/gradle/actions/pull/521](https://redirect.github.com/gradle/actions/pull/521) - Add npm build scans by [@&#8203;bigdaz](https://redirect.github.com/bigdaz) in [https://github.com/gradle/actions/pull/517](https://redirect.github.com/gradle/actions/pull/517) - Avoid env-var interpolation in toolchains.xml by [@&#8203;bigdaz](https://redirect.github.com/bigdaz) in [https://github.com/gradle/actions/pull/518](https://redirect.github.com/gradle/actions/pull/518) - Avoid saving build-results for cache cleanup by [@&#8203;bigdaz](https://redirect.github.com/bigdaz) in [https://github.com/gradle/actions/pull/520](https://redirect.github.com/gradle/actions/pull/520) - Save dependency graph as workflow artifact by [@&#8203;bigdaz](https://redirect.github.com/bigdaz) in [https://github.com/gradle/actions/pull/522](https://redirect.github.com/gradle/actions/pull/522) - Update to CCUDGP 2.1 by [@&#8203;bigdaz](https://redirect.github.com/bigdaz) in [https://github.com/gradle/actions/pull/524](https://redirect.github.com/gradle/actions/pull/524) - Bump references to Develocity Gradle plugin from 3.19 to 3.19.1 by [@&#8203;bot-githubaction](https://redirect.github.com/bot-githubaction) in [https://github.com/gradle/actions/pull/527](https://redirect.github.com/gradle/actions/pull/527) - Choose best Gradle version to use for cache cleanup by [@&#8203;bigdaz](https://redirect.github.com/bigdaz) in [https://github.com/gradle/actions/pull/526](https://redirect.github.com/gradle/actions/pull/526) - Uppercase cache-encryption-key by [@&#8203;Goooler](https://redirect.github.com/Goooler) in [https://github.com/gradle/actions/pull/528](https://redirect.github.com/gradle/actions/pull/528) - Attempt to use gradle wrapper for cache cleanup by [@&#8203;bigdaz](https://redirect.github.com/bigdaz) in [https://github.com/gradle/actions/pull/525](https://redirect.github.com/gradle/actions/pull/525) - Document GRADLE_ACTIONS_SKIP_BUILD_RESULT_CAPTURE by [@&#8203;bigdaz](https://redirect.github.com/bigdaz) in [https://github.com/gradle/actions/pull/529](https://redirect.github.com/gradle/actions/pull/529) - Update known wrapper checksums by [@&#8203;github-actions](https://redirect.github.com/github-actions) in [https://github.com/gradle/actions/pull/509](https://redirect.github.com/gradle/actions/pull/509) - Bump Gradle Wrappers by [@&#8203;github-actions](https://redirect.github.com/github-actions) in [https://github.com/gradle/actions/pull/535](https://redirect.github.com/gradle/actions/pull/535) - Bump the github-actions group across 2 directories with 2 updates by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/gradle/actions/pull/538](https://redirect.github.com/gradle/actions/pull/538) - Update undici to resolve vulnerability by [@&#8203;bigdaz](https://redirect.github.com/bigdaz) in [https://github.com/gradle/actions/pull/536](https://redirect.github.com/gradle/actions/pull/536) - Bump the npm-dependencies group across 1 directory with 2 updates by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/gradle/actions/pull/539](https://redirect.github.com/gradle/actions/pull/539) - Update docs for dependency review by [@&#8203;bigdaz](https://redirect.github.com/bigdaz) in [https://github.com/gradle/actions/pull/540](https://redirect.github.com/gradle/actions/pull/540) - Fix space assignment deprecations in init-scripts by [@&#8203;bigdaz](https://redirect.github.com/bigdaz) in [https://github.com/gradle/actions/pull/542](https://redirect.github.com/gradle/actions/pull/542) ##### New Contributors - [@&#8203;SimonMarquis](https://redirect.github.com/SimonMarquis) made their first contribution in [https://github.com/gradle/actions/pull/492](https://redirect.github.com/gradle/actions/pull/492) **Full Changelog**: gradle/actions@v4.2.2...v4.3.0 ### [`v4.2.2`](https://redirect.github.com/gradle/actions/releases/tag/v4.2.2) [Compare Source](https://redirect.github.com/gradle/actions/compare/v4.2.1...v4.2.2) This patch release updates a bunch of dependency versions and fixes a deprecation warning emitted with Gradle 8.12. ##### What's Changed - Bump cross-spawn in /sources by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/gradle/actions/pull/455](https://redirect.github.com/gradle/actions/pull/455) - Update known wrapper checksums by [@&#8203;github-actions](https://redirect.github.com/github-actions) in [https://github.com/gradle/actions/pull/462](https://redirect.github.com/gradle/actions/pull/462) - Bump the github-actions group across 1 directory with 2 updates by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/gradle/actions/pull/474](https://redirect.github.com/gradle/actions/pull/474) - Update [@&#8203;actions/cache4](https://redirect.github.com/actions/cache4).0.0 and patch by [@&#8203;amyu](https://redirect.github.com/amyu) in [https://github.com/gradle/actions/pull/479](https://redirect.github.com/gradle/actions/pull/479) - Update develocity-injection init script to v1.1 by [@&#8203;bot-githubaction](https://redirect.github.com/bot-githubaction) in [https://github.com/gradle/actions/pull/471](https://redirect.github.com/gradle/actions/pull/471) - Dependency updates by [@&#8203;bigdaz](https://redirect.github.com/bigdaz) in [https://github.com/gradle/actions/pull/480](https://redirect.github.com/gradle/actions/pull/480) - Bump references to Develocity Gradle plugin from 3.18.2 to 3.19 by [@&#8203;bot-githubaction](https://redirect.github.com/bot-githubaction) in [https://github.com/gradle/actions/pull/483](https://redirect.github.com/gradle/actions/pull/483) - Update known wrapper checksums by [@&#8203;github-actions](https://redirect.github.com/github-actions) in [https://github.com/gradle/actions/pull/484](https://redirect.github.com/gradle/actions/pull/484) - Bump the gradle group across 1 directory with 2 updates by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/gradle/actions/pull/485](https://redirect.github.com/gradle/actions/pull/485) - Attempt to limit failures in wrapper-validation tests by [@&#8203;bigdaz](https://redirect.github.com/bigdaz) in [https://github.com/gradle/actions/pull/490](https://redirect.github.com/gradle/actions/pull/490) - Update known wrapper checksums by [@&#8203;github-actions](https://redirect.github.com/github-actions) in [https://github.com/gradle/actions/pull/488](https://redirect.github.com/gradle/actions/pull/488) - Remove deprecation warning from init-script by [@&#8203;bigdaz](https://redirect.github.com/bigdaz) in [https://github.com/gradle/actions/pull/491](https://redirect.github.com/gradle/actions/pull/491) - Use latest dependency-graph plugin by [@&#8203;bigdaz](https://redirect.github.com/bigdaz) in [https://github.com/gradle/actions/pull/489](https://redirect.github.com/gradle/actions/pull/489) ##### New Contributors - [@&#8203;sebastian-dyroff](https://redirect.github.com/sebastian-dyroff) made their first contribution in [https://github.com/gradle/actions/pull/465](https://redirect.github.com/gradle/actions/pull/465) - [@&#8203;amyu](https://redirect.github.com/amyu) made their first contribution in [https://github.com/gradle/actions/pull/479](https://redirect.github.com/gradle/actions/pull/479) **Full Changelog**: gradle/actions@v4.2.1...v4.2.2 </details> <details> <summary>ncipollo/release-action (ncipollo/release-action)</summary> ### [`v1.15.0`](https://redirect.github.com/ncipollo/release-action/releases/tag/v1.15.0) [Compare Source](https://redirect.github.com/ncipollo/release-action/compare/v1.14.0...v1.15.0) #### What's Changed Add more explicit error when release list API call fails. TLDR below - many dependency updates. - Bump semver from 6.3.0 to 6.3.1 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/350](https://redirect.github.com/ncipollo/release-action/pull/350) - Bump actions/checkout from 3 to 4 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/364](https://redirect.github.com/ncipollo/release-action/pull/364) - Bump glob from 10.3.1 to 10.3.4 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/361](https://redirect.github.com/ncipollo/release-action/pull/361) - Bump jest-circus from 29.5.0 to 29.6.4 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/359](https://redirect.github.com/ncipollo/release-action/pull/359) - Bump typescript from 5.1.6 to 5.2.2 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/362](https://redirect.github.com/ncipollo/release-action/pull/362) - Bump [@&#8203;types/node](https://redirect.github.com/types/node) from 20.3.3 to 20.6.0 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/366](https://redirect.github.com/ncipollo/release-action/pull/366) - Bump jest and [@&#8203;types/jest](https://redirect.github.com/types/jest) by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/367](https://redirect.github.com/ncipollo/release-action/pull/367) - Bump [@&#8203;babel/traverse](https://redirect.github.com/babel/traverse) from 7.17.3 to 7.23.2 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/378](https://redirect.github.com/ncipollo/release-action/pull/378) - Bump jest and [@&#8203;types/jest](https://redirect.github.com/types/jest) by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/377](https://redirect.github.com/ncipollo/release-action/pull/377) - Bump jest-circus from 29.6.4 to 29.7.0 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/376](https://redirect.github.com/ncipollo/release-action/pull/376) - Bump [@&#8203;types/node](https://redirect.github.com/types/node) from 20.6.0 to 20.8.6 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/379](https://redirect.github.com/ncipollo/release-action/pull/379) - Bump [@&#8203;actions/core](https://redirect.github.com/actions/core) from 1.10.0 to 1.10.1 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/375](https://redirect.github.com/ncipollo/release-action/pull/375) - Bump [@&#8203;types/jest](https://redirect.github.com/types/jest) from 29.5.5 to 29.5.7 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/386](https://redirect.github.com/ncipollo/release-action/pull/386) - Bump actions/setup-node from 3 to 4 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/381](https://redirect.github.com/ncipollo/release-action/pull/381) - Bump [@&#8203;types/node](https://redirect.github.com/types/node) from 20.8.6 to 20.9.0 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/390](https://redirect.github.com/ncipollo/release-action/pull/390) - Bump typescript from 5.2.2 to 5.3.2 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/396](https://redirect.github.com/ncipollo/release-action/pull/396) - Bump [@&#8203;types/node](https://redirect.github.com/types/node) from 20.9.0 to 20.10.1 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/395](https://redirect.github.com/ncipollo/release-action/pull/395) - Bump [@&#8203;types/jest](https://redirect.github.com/types/jest) from 29.5.7 to 29.5.11 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/399](https://redirect.github.com/ncipollo/release-action/pull/399) - Bump [@&#8203;actions/github](https://redirect.github.com/actions/github) from 5.1.1 to 6.0.0 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/385](https://redirect.github.com/ncipollo/release-action/pull/385) - Bump typescript from 5.3.2 to 5.3.3 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/403](https://redirect.github.com/ncipollo/release-action/pull/403) - Bump [@&#8203;types/node](https://redirect.github.com/types/node) from 20.10.1 to 20.10.6 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/402](https://redirect.github.com/ncipollo/release-action/pull/402) - Upgrade to Node 20 by [@&#8203;aovens-quantifi](https://redirect.github.com/aovens-quantifi) in [https://github.com/ncipollo/release-action/pull/411](https://redirect.github.com/ncipollo/release-action/pull/411) - Bump undici from 5.28.2 to 5.28.3 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/423](https://redirect.github.com/ncipollo/release-action/pull/423) - Bump [@&#8203;types/jest](https://redirect.github.com/types/jest) from 29.5.11 to 29.5.12 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/427](https://redirect.github.com/ncipollo/release-action/pull/427) - Bump [@&#8203;types/node](https://redirect.github.com/types/node) from 20.10.6 to 20.11.24 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/426](https://redirect.github.com/ncipollo/release-action/pull/426) - Bump ts-jest from 29.1.1 to 29.1.2 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/409](https://redirect.github.com/ncipollo/release-action/pull/409) - Bump undici from 5.28.3 to 5.28.4 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/439](https://redirect.github.com/ncipollo/release-action/pull/439) - Bump typescript from 5.3.3 to 5.4.3 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/438](https://redirect.github.com/ncipollo/release-action/pull/438) - Bump [@&#8203;types/node](https://redirect.github.com/types/node) from 20.11.24 to 20.12.2 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/437](https://redirect.github.com/ncipollo/release-action/pull/437) - Bump glob from 10.3.10 to 10.3.12 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/436](https://redirect.github.com/ncipollo/release-action/pull/436) - Bump braces from 3.0.2 to 3.0.3 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/449](https://redirect.github.com/ncipollo/release-action/pull/449) - Bump glob from 10.3.12 to 11.0.0 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/457](https://redirect.github.com/ncipollo/release-action/pull/457) - Bump typescript from 5.4.3 to 5.5.4 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/459](https://redirect.github.com/ncipollo/release-action/pull/459) - Bump ts-jest from 29.1.2 to 29.2.4 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/460](https://redirect.github.com/ncipollo/release-action/pull/460) - Bump [@&#8203;types/node](https://redirect.github.com/types/node) from 20.12.2 to 22.0.2 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/458](https://redirect.github.com/ncipollo/release-action/pull/458) - Bump cross-spawn from 7.0.3 to 7.0.6 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/480](https://redirect.github.com/ncipollo/release-action/pull/480) - Bump micromatch from 4.0.4 to 4.0.8 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/463](https://redirect.github.com/ncipollo/release-action/pull/463) - Bump [@&#8203;types/node](https://redirect.github.com/types/node) from 22.0.2 to 22.10.3 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/487](https://redirect.github.com/ncipollo/release-action/pull/487) - Bump [@&#8203;types/jest](https://redirect.github.com/types/jest) from 29.5.12 to 29.5.14 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/476](https://redirect.github.com/ncipollo/release-action/pull/476) - Bump ts-jest from 29.2.4 to 29.2.5 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/464](https://redirect.github.com/ncipollo/release-action/pull/464) - Bump [@&#8203;actions/core](https://redirect.github.com/actions/core) from 1.10.1 to 1.11.1 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/488](https://redirect.github.com/ncipollo/release-action/pull/488) - Bump typescript from 5.5.4 to 5.7.3 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in [https://github.com/ncipollo/release-action/pull/490](https://redirect.github.com/ncipollo/release-action/pull/490) #### New Contributors - [@&#8203;aovens-quantifi](https://redirect.github.com/aovens-quantifi) made their first contribution in [https://github.com/ncipollo/release-action/pull/411](https://redirect.github.com/ncipollo/release-action/pull/411) **Full Changelog**: ncipollo/release-action@v1.13.0...v1.15.0 </details> --- ### Configuration 📅 **Schedule**: Branch creation - "every 2nd week starting on the 2 week of the year before 4am on Monday" (UTC), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://redirect.github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/bitwarden/sdk-internal). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS44MC4wIiwidXBkYXRlZEluVmVyIjoiMzkuMTQ1LjAiLCJ0YXJnZXRCcmFuY2giOiJtYWluIiwibGFiZWxzIjpbXX0=--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
1 parent 3d5952a commit 334fd3e

16 files changed

+30
-30
lines changed

.github/workflows/build-android.yml

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -33,7 +33,7 @@ jobs:
3333
toolchain: stable
3434

3535
- name: Cache cargo registry
36-
uses: Swatinem/rust-cache@82a92a6e8fbeee089604da2575dc567ae9ddeaab # v2.7.5
36+
uses: Swatinem/rust-cache@f0deed1e0edfc6a9be95417288c0e1099b1eeec3 # v2.7.7
3737
with:
3838
key: ${{ matrix.settings.target }}-cargo
3939

@@ -46,7 +46,7 @@ jobs:
4646
run: cross build -p bitwarden-uniffi --release --target=${{ matrix.settings.target }}
4747

4848
- name: Upload artifact
49-
uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3
49+
uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0
5050
with:
5151
name: android-${{ matrix.settings.target }}
5252
path: ./target/${{ matrix.settings.target }}/release/libbitwarden_uniffi.so
@@ -76,12 +76,12 @@ jobs:
7676
toolchain: stable
7777

7878
- name: Cache cargo registry
79-
uses: Swatinem/rust-cache@82a92a6e8fbeee089604da2575dc567ae9ddeaab # v2.7.5
79+
uses: Swatinem/rust-cache@f0deed1e0edfc6a9be95417288c0e1099b1eeec3 # v2.7.7
8080
with:
8181
key: cargo-combine-cache
8282

8383
- name: Setup Java
84-
uses: actions/setup-java@8df1039502a15bceb9433410b1a100fbe190c53b # v4.5.0
84+
uses: actions/setup-java@3a4f6e1af504cf6a31855fa899c6aa5355ba6c12 # v4.7.0
8585
with:
8686
distribution: temurin
8787
java-version: 17
@@ -103,7 +103,7 @@ jobs:
103103
run: ./build-schemas.sh
104104

105105
- name: Setup gradle
106-
uses: gradle/actions/setup-gradle@cc4fc85e6b35bafd578d5ffbc76a5518407e1af0 # v4.2.1
106+
uses: gradle/actions/setup-gradle@94baf225fe0a508e581a564467443d0e2379123b # v4.3.0
107107

108108
- name: Publish
109109
run: ./gradlew sdk:publish

.github/workflows/build-rust-crates.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -40,7 +40,7 @@ jobs:
4040
toolchain: stable
4141

4242
- name: Cache cargo registry
43-
uses: Swatinem/rust-cache@82a92a6e8fbeee089604da2575dc567ae9ddeaab # v2.7.5
43+
uses: Swatinem/rust-cache@f0deed1e0edfc6a9be95417288c0e1099b1eeec3 # v2.7.7
4444

4545
- name: Build
4646
run: cargo build -p ${{ matrix.package }} --release
@@ -62,7 +62,7 @@ jobs:
6262
toolchain: stable
6363

6464
- name: Cache cargo registry
65-
uses: Swatinem/rust-cache@82a92a6e8fbeee089604da2575dc567ae9ddeaab # v2.7.5
65+
uses: Swatinem/rust-cache@f0deed1e0edfc6a9be95417288c0e1099b1eeec3 # v2.7.7
6666

6767
- name: Install cargo-release
6868
run: cargo install cargo-release

.github/workflows/build-swift.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -40,7 +40,7 @@ jobs:
4040
toolchain: stable
4141

4242
- name: Cache cargo registry
43-
uses: Swatinem/rust-cache@82a92a6e8fbeee089604da2575dc567ae9ddeaab # v2.7.5
43+
uses: Swatinem/rust-cache@f0deed1e0edfc6a9be95417288c0e1099b1eeec3 # v2.7.7
4444
with:
4545
key: sdk-swift-cargo
4646

@@ -66,14 +66,14 @@ jobs:
6666
cp -rf crates/bitwarden-uniffi/swift/BitwardenFFI.xcframework artifacts
6767
6868
- name: Upload BitwardenFFI.xcframework artifact
69-
uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3
69+
uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0
7070
with:
7171
name: BitwardenFFI-${{ env._VERSION }}-${{ steps.build.outputs.short-sha }}.xcframework
7272
path: artifacts
7373
if-no-files-found: error
7474

7575
- name: Upload BitwardenSdk sources
76-
uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3
76+
uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0
7777
with:
7878
name: BitwardenSdk-${{ env._VERSION }}-${{ steps.build.outputs.short-sha }}-sources
7979
path: crates/bitwarden-uniffi/swift/Sources/BitwardenSdk

.github/workflows/build-wasm-internal.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -42,7 +42,7 @@ jobs:
4242
echo "SDK_VERSION='${SDK_VERSION}'"
4343
4444
- name: Setup Node
45-
uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af # v4.1.0
45+
uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4.2.0
4646
with:
4747
node-version: 20
4848
registry-url: "https://npm.pkg.github.com"
@@ -58,7 +58,7 @@ jobs:
5858
targets: wasm32-unknown-unknown
5959

6060
- name: Cache cargo registry
61-
uses: Swatinem/rust-cache@82a92a6e8fbeee089604da2575dc567ae9ddeaab # v2.7.5
61+
uses: Swatinem/rust-cache@f0deed1e0edfc6a9be95417288c0e1099b1eeec3 # v2.7.7
6262
with:
6363
key: wasm-cargo-cache
6464

@@ -69,7 +69,7 @@ jobs:
6969
run: ./build.sh -r
7070

7171
- name: Upload artifact
72-
uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3
72+
uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0
7373
with:
7474
name: sdk-internal
7575
path: ${{ github.workspace }}/crates/bitwarden-wasm-internal/npm/*

.github/workflows/check-powerset.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -30,7 +30,7 @@ jobs:
3030
toolchain: stable
3131

3232
- name: Cache cargo registry
33-
uses: Swatinem/rust-cache@82a92a6e8fbeee089604da2575dc567ae9ddeaab # v2.7.5
33+
uses: Swatinem/rust-cache@f0deed1e0edfc6a9be95417288c0e1099b1eeec3 # v2.7.7
3434

3535
- name: Install cargo-hack
3636
run: cargo install cargo-hack --version 0.6.33 --locked

.github/workflows/direct-minimal-versions.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -44,7 +44,7 @@ jobs:
4444
targets: ${{ matrix.settings.target }}
4545

4646
- name: Cache cargo registry
47-
uses: Swatinem/rust-cache@82a92a6e8fbeee089604da2575dc567ae9ddeaab # v2.7.5
47+
uses: Swatinem/rust-cache@f0deed1e0edfc6a9be95417288c0e1099b1eeec3 # v2.7.7
4848
with:
4949
key: dmv-${{ matrix.settings.target }}-cargo-${{ matrix.settings.os }}
5050

.github/workflows/lint.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -30,7 +30,7 @@ jobs:
3030
rustup component add rustfmt --toolchain nightly-x86_64-unknown-linux-gnu
3131
3232
- name: Cache cargo registry
33-
uses: Swatinem/rust-cache@82a92a6e8fbeee089604da2575dc567ae9ddeaab # v2.7.5
33+
uses: Swatinem/rust-cache@f0deed1e0edfc6a9be95417288c0e1099b1eeec3 # v2.7.7
3434

3535
- name: Cargo fmt
3636
run: cargo +nightly fmt --check
@@ -45,7 +45,7 @@ jobs:
4545
RUSTFLAGS: "-D warnings"
4646

4747
- name: Upload Clippy results to GitHub
48-
uses: github/codeql-action/upload-sarif@aa578102511db1f4524ed59b8cc2bae4f6e88195 # v3.27.6
48+
uses: github/codeql-action/upload-sarif@dd746615b3b9d728a6a37ca2045b68ca76d4841a # v3.28.8
4949
with:
5050
sarif_file: clippy_result.sarif
5151

@@ -70,7 +70,7 @@ jobs:
7070
run: cargo +nightly udeps --workspace --all-features
7171

7272
- name: Set up Node
73-
uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af # v4.1.0
73+
uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4.2.0
7474
with:
7575
cache: "npm"
7676
cache-dependency-path: "package-lock.json"

.github/workflows/memory-testing.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -34,7 +34,7 @@ jobs:
3434
toolchain: stable
3535

3636
- name: Cache cargo registry
37-
uses: Swatinem/rust-cache@82a92a6e8fbeee089604da2575dc567ae9ddeaab # v2.7.5
37+
uses: Swatinem/rust-cache@f0deed1e0edfc6a9be95417288c0e1099b1eeec3 # v2.7.7
3838
with:
3939
key: memtest-cargo
4040

.github/workflows/minimum-rust-version.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -37,7 +37,7 @@ jobs:
3737
targets: ${{ matrix.settings.target }}
3838

3939
- name: Cache cargo registry
40-
uses: Swatinem/rust-cache@82a92a6e8fbeee089604da2575dc567ae9ddeaab # v2.7.5
40+
uses: Swatinem/rust-cache@f0deed1e0edfc6a9be95417288c0e1099b1eeec3 # v2.7.7
4141
with:
4242
key: msrv-${{ matrix.settings.target }}-cargo-${{ matrix.settings.os }}
4343

.github/workflows/publish-rust-crates.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -84,7 +84,7 @@ jobs:
8484
toolchain: stable
8585

8686
- name: Cache cargo registry
87-
uses: Swatinem/rust-cache@82a92a6e8fbeee089604da2575dc567ae9ddeaab # v2.7.5
87+
uses: Swatinem/rust-cache@f0deed1e0edfc6a9be95417288c0e1099b1eeec3 # v2.7.7
8888

8989
- name: Install cargo-release
9090
run: cargo install cargo-release

0 commit comments

Comments
 (0)