From f464972ed95933e17b2f4bd5ea4dfe457e67b35a Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 3 Jun 2026 02:05:58 +0000 Subject: [PATCH] build(deps): bump the actions group with 8 updates Bumps the actions group with 8 updates: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `4` | `6` | | [actions/setup-java](https://github.com/actions/setup-java) | `4` | `5` | | [android-actions/setup-android](https://github.com/android-actions/setup-android) | `3` | `4` | | [gradle/actions](https://github.com/gradle/actions) | `4` | `6` | | [actions/upload-artifact](https://github.com/actions/upload-artifact) | `4` | `7` | | [actions/cache](https://github.com/actions/cache) | `4` | `5` | | [actions/setup-node](https://github.com/actions/setup-node) | `4` | `6` | | [actions/github-script](https://github.com/actions/github-script) | `7` | `9` | Updates `actions/checkout` from 4 to 6 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v4...v6) Updates `actions/setup-java` from 4 to 5 - [Release notes](https://github.com/actions/setup-java/releases) - [Commits](https://github.com/actions/setup-java/compare/v4...v5) Updates `android-actions/setup-android` from 3 to 4 - [Release notes](https://github.com/android-actions/setup-android/releases) - [Commits](https://github.com/android-actions/setup-android/compare/v3...v4) Updates `gradle/actions` from 4 to 6 - [Release notes](https://github.com/gradle/actions/releases) - [Commits](https://github.com/gradle/actions/compare/v4...v6) Updates `actions/upload-artifact` from 4 to 7 - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/v4...v7) Updates `actions/cache` from 4 to 5 - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](https://github.com/actions/cache/compare/v4...v5) Updates `actions/setup-node` from 4 to 6 - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v4...v6) Updates `actions/github-script` from 7 to 9 - [Release notes](https://github.com/actions/github-script/releases) - [Commits](https://github.com/actions/github-script/compare/v7...v9) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: actions/setup-java dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: android-actions/setup-android dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: gradle/actions dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: actions/upload-artifact dependency-version: '7' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: actions/cache dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: actions/setup-node dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: actions/github-script dependency-version: '9' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions ... Signed-off-by: dependabot[bot] --- .github/workflows/android.yml | 32 ++++++++++----------- .github/workflows/cve-monitor.yml | 8 +++--- .github/workflows/security-review.yml | 2 +- .github/workflows/verifier-chain-verify.yml | 2 +- 4 files changed, 22 insertions(+), 22 deletions(-) diff --git a/.github/workflows/android.yml b/.github/workflows/android.yml index d54db04..b8cd5f7 100644 --- a/.github/workflows/android.yml +++ b/.github/workflows/android.yml @@ -63,13 +63,13 @@ jobs: uses: actions/checkout@v6 - name: Set up JDK 17 - uses: actions/setup-java@v4 + uses: actions/setup-java@v5 with: distribution: temurin java-version: '17' - name: Set up Android SDK - uses: android-actions/setup-android@v3 + uses: android-actions/setup-android@v4 with: # sdkmanager wants packages as a single space-separated string, # NOT a YAML multi-line block (the block joins lines with \n, @@ -80,7 +80,7 @@ jobs: packages: 'platforms;android-34 platforms;android-30 build-tools;34.0.0 platform-tools' - name: Set up Gradle - uses: gradle/actions/setup-gradle@v4 + uses: gradle/actions/setup-gradle@v6 with: # AGP 8.5 pins Gradle 8.7 (see gradle-wrapper.properties). gradle-version: '8.7' @@ -126,7 +126,7 @@ jobs: - name: Upload lint report if: always() - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v7 with: name: lint-report path: android/app/build/reports/lint-results-release.html @@ -135,7 +135,7 @@ jobs: - name: Upload test results if: always() - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v7 with: name: test-reports path: android/app/build/reports/tests/ @@ -144,7 +144,7 @@ jobs: - name: Upload debug APK if: success() - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v7 with: name: zeroauth-android-debug-apk path: android/app/build/outputs/apk/debug/*.apk @@ -171,7 +171,7 @@ jobs: uses: actions/checkout@v6 - name: Set up JDK 17 - uses: actions/setup-java@v4 + uses: actions/setup-java@v5 with: distribution: temurin java-version: '17' @@ -185,12 +185,12 @@ jobs: sudo udevadm trigger --name-match=kvm - name: Set up Android SDK - uses: android-actions/setup-android@v3 + uses: android-actions/setup-android@v4 with: packages: 'platforms;android-34 platforms;android-30 build-tools;34.0.0 platform-tools' - name: Set up Gradle - uses: gradle/actions/setup-gradle@v4 + uses: gradle/actions/setup-gradle@v6 with: gradle-version: '8.7' cache-read-only: ${{ github.ref != 'refs/heads/main' }} @@ -199,7 +199,7 @@ jobs: run: gradle wrapper --gradle-version 8.7 --distribution-type bin - name: AVD cache - uses: actions/cache@v4 + uses: actions/cache@v5 id: avd-cache with: path: | @@ -239,7 +239,7 @@ jobs: - name: Upload instrumented test report if: always() - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v7 with: name: instrumented-test-reports path: android/app/build/reports/androidTests/ @@ -263,18 +263,18 @@ jobs: uses: actions/checkout@v6 - name: Set up JDK 17 - uses: actions/setup-java@v4 + uses: actions/setup-java@v5 with: distribution: temurin java-version: '17' - name: Set up Android SDK - uses: android-actions/setup-android@v3 + uses: android-actions/setup-android@v4 with: packages: 'platforms;android-34 platforms;android-30 build-tools;34.0.0 platform-tools' - name: Set up Gradle - uses: gradle/actions/setup-gradle@v4 + uses: gradle/actions/setup-gradle@v6 with: gradle-version: '8.7' @@ -315,7 +315,7 @@ jobs: run: rm -f "${RUNNER_TEMP}/signing/release.jks" - name: Upload signed AAB - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v7 with: name: zeroauth-android-release-aab path: android/app/build/outputs/bundle/release/*.aab @@ -323,7 +323,7 @@ jobs: if-no-files-found: error - name: Upload signed APK - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v7 with: name: zeroauth-android-release-apk path: android/app/build/outputs/apk/release/*.apk diff --git a/.github/workflows/cve-monitor.yml b/.github/workflows/cve-monitor.yml index 88db56c..b9c1018 100644 --- a/.github/workflows/cve-monitor.yml +++ b/.github/workflows/cve-monitor.yml @@ -34,10 +34,10 @@ jobs: steps: - name: Check out repository - uses: actions/checkout@v4 + uses: actions/checkout@v6 - name: Set up Node.js - uses: actions/setup-node@v4 + uses: actions/setup-node@v6 with: node-version: 20 cache: npm @@ -74,7 +74,7 @@ jobs: - name: Upload scanner output if: always() - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v7 with: name: cve-monitor-log path: /tmp/cve-monitor.log @@ -83,7 +83,7 @@ jobs: - name: Open GitHub issue on high/critical finding if: steps.scan.outputs.status != '0' - uses: actions/github-script@v7 + uses: actions/github-script@v9 env: SCAN_LOG_PATH: /tmp/cve-monitor.log with: diff --git a/.github/workflows/security-review.yml b/.github/workflows/security-review.yml index 4792162..ed38ed8 100644 --- a/.github/workflows/security-review.yml +++ b/.github/workflows/security-review.yml @@ -75,7 +75,7 @@ jobs: } >> "$GITHUB_OUTPUT" - name: Annotate PR with subagent invocation reminder - uses: actions/github-script@v8 + uses: actions/github-script@v9 with: script: | const touched = `${{ steps.paths.outputs.touched }}`.trim(); diff --git a/.github/workflows/verifier-chain-verify.yml b/.github/workflows/verifier-chain-verify.yml index 122ac47..886f8d8 100644 --- a/.github/workflows/verifier-chain-verify.yml +++ b/.github/workflows/verifier-chain-verify.yml @@ -69,7 +69,7 @@ jobs: - name: Open critical issue on failure if: failure() - uses: actions/github-script@v8 + uses: actions/github-script@v9 with: script: | const date = new Date().toISOString().slice(0, 10);