Merge pull request #211 from spdx/dependabot/github_actions/actions/c…

…heckout-4.2.2 Bump actions/checkout from 2.7.0 to 4.2.2
spdx · Oct 30, 2024 · eb4091f · eb4091f
2 parents bb585c5 + 8161e5e
commit eb4091f
Show file tree

Hide file tree

Showing 6 changed files with 6 additions and 6 deletions.
diff --git a/.github/workflows/bandit.yml b/.github/workflows/bandit.yml
@@ -11,7 +11,7 @@ jobs:
   bandit:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@ee0669bd1cc54295c223e0bb666b733df41de1c5 # v2
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v2
       - name: Run bandit
         uses: tj-actions/bandit@67ccda81837995c1e194e7b010f5ec55e762f204 # v5.1
         with:

diff --git a/.github/workflows/black.yml b/.github/workflows/black.yml
@@ -12,5 +12,5 @@ jobs:
   lint:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@ee0669bd1cc54295c223e0bb666b733df41de1c5 # v2
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v2
       - uses: psf/black@1b2427a2b785cc4aac97c19bb4b9a0de063f9547 # stable
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
@@ -20,7 +20,7 @@ jobs:
 
     steps:
     - name: Checkout repository
-      uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
+      uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v3
 
     # Initializes the CodeQL tools for scanning.
     - name: Initialize CodeQL

diff --git a/.github/workflows/pylint.yml b/.github/workflows/pylint.yml
@@ -15,7 +15,7 @@ jobs:
       matrix:
         python-version: ["3.9"]
     steps:
-    - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
+    - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v3
     - name: Set up Python ${{ matrix.python-version }}
       uses: actions/setup-python@3542bca2639a428e1796aaa6a2ffef0c0f575566 # v3
       with:

diff --git a/.github/workflows/python-publish.yml b/.github/workflows/python-publish.yml
@@ -15,7 +15,7 @@ jobs:
        # see: https://docs.pypi.org/trusted-publishers/
        id-token: write
     steps:
-    - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
+    - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v3
     - name: Set up Python
       uses: actions/setup-python@3542bca2639a428e1796aaa6a2ffef0c0f575566 # v3
       with:

diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml
@@ -19,7 +19,7 @@ jobs:
 
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           persist-credentials: false