From d5088e02513c438e314bdf2edc98bb4cd6682143 Mon Sep 17 00:00:00 2001 From: "agntcy-automation[bot]" <269490587+agntcy-automation[bot]@users.noreply.github.com> Date: Tue, 5 May 2026 07:01:40 +0000 Subject: [PATCH] chore(deps): update github actions --- .github/workflows/codeql.yml | 4 ++-- .github/workflows/conventional_commits.yml | 6 +++--- .github/workflows/dependencies.yaml | 4 ++-- .github/workflows/dependency.yml | 6 +++--- .github/workflows/lint.yml | 6 +++--- .github/workflows/reusable-test-sdk.yaml | 2 +- examples/uv.lock | 12 ++++++------ 7 files changed, 20 insertions(+), 20 deletions(-) diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 7c7b5fd..b457f7b 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -60,7 +60,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1 + uses: github/codeql-action/init@e46ed2cbd01164d986452f91f178727624ae40d7 # v4.35.3 with: languages: python build-mode: none @@ -79,6 +79,6 @@ jobs: - "**/*_pb2_grpc.py" - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1 + uses: github/codeql-action/analyze@e46ed2cbd01164d986452f91f178727624ae40d7 # v4.35.3 with: category: "/language:python" diff --git a/.github/workflows/conventional_commits.yml b/.github/workflows/conventional_commits.yml index d745639..5f6195c 100644 --- a/.github/workflows/conventional_commits.yml +++ b/.github/workflows/conventional_commits.yml @@ -21,13 +21,13 @@ jobs: statuses: write steps: - name: ๐Ÿ”’ harden runner - uses: step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0 + uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 with: egress-policy: audit - - uses: actions/checkout@v4 + - uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4.3.1 with: fetch-depth: 0 - name: ๐Ÿงน Conventional Commits - uses: webiny/action-conventional-commits@v1.3.0 + uses: webiny/action-conventional-commits@7f91b1595ca1951cdb671ddc9f07a49081ec5b69 # v1.4.2 with: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/dependencies.yaml b/.github/workflows/dependencies.yaml index 228ffc5..a80df37 100644 --- a/.github/workflows/dependencies.yaml +++ b/.github/workflows/dependencies.yaml @@ -12,7 +12,7 @@ jobs: steps: - name: Authenticate with GitHub App Bot id: app-token - uses: actions/create-github-app-token@f8d387b68d61c58ab83c6c016672934102569859 # v3.0.0 + uses: actions/create-github-app-token@1b10c78c7865c340bc4f6099eb2f838309f1e8c3 # v3.1.1 with: app-id: ${{ secrets.PROJECT_APP_ID }} private-key: ${{ secrets.PROJECT_APP_KEY }} @@ -29,7 +29,7 @@ jobs: uses: go-task/setup-task@3be4020d41929789a01026e0e427a4321ce0ad44 #v2.0.0 - name: Setup Node - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 + uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0 with: node-version: "24.x" diff --git a/.github/workflows/dependency.yml b/.github/workflows/dependency.yml index 1794f7b..cc0c464 100644 --- a/.github/workflows/dependency.yml +++ b/.github/workflows/dependency.yml @@ -18,12 +18,12 @@ jobs: pull-requests: write steps: - name: ๐Ÿ”’ harden runner - uses: step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0 + uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 with: egress-policy: audit - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + - uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4.3.1 - name: ๐Ÿ”‚ dependency review - uses: actions/dependency-review-action@3b139cfc5fae8b618d3eae3675e383bb1769c019 # v4.5.0 + uses: actions/dependency-review-action@2031cfc080254a8a887f58cffee85186f0e49e48 # v4.9.0 with: fail-on-severity: "high" deny-licenses: "AGPL-1.0, AGPL-3.0" diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index da85f2a..ebc13f9 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -22,14 +22,14 @@ jobs: statuses: write steps: - name: ๐Ÿ”’ harden runner - uses: step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0 + uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1 with: egress-policy: audit - - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 + - uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4.3.1 with: fetch-depth: 0 - name: ๐Ÿงน run superlinter - uses: super-linter/super-linter@85f7611e0f7b53c8573cca84aa0ed4344f6f6a4d # v7.2.1 + uses: super-linter/super-linter@12150456a73e248bdc94d0794898f94e23127c88 # v7.4.0 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} LINTER_RULES_PATH: ".github/linters" diff --git a/.github/workflows/reusable-test-sdk.yaml b/.github/workflows/reusable-test-sdk.yaml index cc1e3d4..bdde974 100644 --- a/.github/workflows/reusable-test-sdk.yaml +++ b/.github/workflows/reusable-test-sdk.yaml @@ -30,7 +30,7 @@ jobs: fetch-depth: 0 - name: Login to ghcr.io - uses: docker/login-action@b45d80f862d83dbcd57f89517bcf500b2ab88fb2 # v4.0.0 + uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0 with: registry: ghcr.io username: notused diff --git a/examples/uv.lock b/examples/uv.lock index dbb7bb7..62a08ea 100644 --- a/examples/uv.lock +++ b/examples/uv.lock @@ -19,8 +19,8 @@ dependencies = [ [package.metadata] requires-dist = [ - { name = "agntcy-dir-grpc-python", specifier = "==1.78.0.1.20260319131759+f3a65f0dc151" }, - { name = "agntcy-dir-protocolbuffers-python", specifier = "==34.0.0.1.20260319131759+f3a65f0dc151" }, + { name = "agntcy-dir-grpc-python", specifier = "==1.78.0.1.20260413212701+cb1fb6353ac1" }, + { name = "agntcy-dir-protocolbuffers-python", specifier = "==34.0.0.1.20260413212701+cb1fb6353ac1" }, { name = "authlib", specifier = ">=1.6.9" }, { name = "grpcio", specifier = ">=1.78.0" }, { name = "httpx", specifier = ">=0.28.1" }, @@ -37,7 +37,7 @@ dev = [ [[package]] name = "agntcy-dir-grpc-python" -version = "1.78.0.1.20260319131759+f3a65f0dc151" +version = "1.78.0.1.20260413212701+cb1fb6353ac1" source = { registry = "https://buf.build/gen/python" } dependencies = [ { name = "agntcy-dir-protocolbuffers-python" }, @@ -45,7 +45,7 @@ dependencies = [ { name = "grpcio" }, ] wheels = [ - { url = "https://buf.build/gen/python/agntcy-dir-grpc-python/agntcy_dir_grpc_python-1.78.0.1.20260319131759+f3a65f0dc151-py3-none-any.whl", upload-time = "2026-03-19T13:17:59Z" }, + { url = "https://buf.build/gen/python/agntcy-dir-grpc-python/agntcy_dir_grpc_python-1.78.0.1.20260413212701+cb1fb6353ac1-py3-none-any.whl", upload-time = "2026-04-13T21:27:01Z" }, ] [[package]] @@ -63,7 +63,7 @@ wheels = [ [[package]] name = "agntcy-dir-protocolbuffers-python" -version = "34.0.0.1.20260319131759+f3a65f0dc151" +version = "34.0.0.1.20260413212701+cb1fb6353ac1" source = { registry = "https://buf.build/gen/python" } dependencies = [ { name = "agntcy-dir-protocolbuffers-pyi" }, @@ -71,7 +71,7 @@ dependencies = [ { name = "protobuf" }, ] wheels = [ - { url = "https://buf.build/gen/python/agntcy-dir-protocolbuffers-python/agntcy_dir_protocolbuffers_python-34.0.0.1.20260319131759+f3a65f0dc151-py3-none-any.whl", upload-time = "2026-03-19T13:17:59Z" }, + { url = "https://buf.build/gen/python/agntcy-dir-protocolbuffers-python/agntcy_dir_protocolbuffers_python-34.0.0.1.20260413212701+cb1fb6353ac1-py3-none-any.whl", upload-time = "2026-04-13T21:27:01Z" }, ] [[package]]