From 45ce9998250d907d6994a0a53a52b16d0fd32fe7 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 19 Jun 2026 04:11:34 +0000 Subject: [PATCH] chore: deps: bump actions/checkout from 6.0.3 to 7.0.0 Bumps [actions/checkout](https://github.com/actions/checkout) from 6.0.3 to 7.0.0. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/df4cb1c069e1874edd31b4311f1884172cec0e10...9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 7.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/bom-refresh.yaml | 2 +- .github/workflows/build-attested.yaml | 2 +- .github/workflows/codeql.yaml | 2 +- .github/workflows/coverage-matrix-refresh.yaml | 2 +- .github/workflows/deploy.yaml | 2 +- .github/workflows/fern-docs-ci.yaml | 2 +- .github/workflows/fern-docs-preview-build.yml | 2 +- .github/workflows/gpu-h100-inference-test.yaml | 2 +- .github/workflows/gpu-h100-kind-runtime-test.yaml | 2 +- .github/workflows/gpu-h100-training-test.yaml | 2 +- .github/workflows/gpu-smoke-test.yaml | 4 ++-- .github/workflows/kms-ministack-e2e.yaml | 2 +- .github/workflows/kwok-recipes.yaml | 6 +++--- .github/workflows/kwok-tier3-shard.yaml | 2 +- .github/workflows/merge-gate.yaml | 12 ++++++------ .github/workflows/mirror-e2e.yaml | 2 +- .github/workflows/on-push-comment.yaml | 2 +- .github/workflows/on-push.yaml | 4 ++-- .github/workflows/on-tag.yaml | 12 ++++++------ .github/workflows/packaging.yaml | 2 +- .github/workflows/pr-label-guard.yaml | 2 +- .github/workflows/publish-fern-docs.yml | 2 +- .github/workflows/qualification.yaml | 10 +++++----- .github/workflows/recipe-evidence.yaml | 2 +- .github/workflows/recipe-health-refresh.yaml | 2 +- .github/workflows/renovate.yaml | 2 +- .github/workflows/sigstore-scaffolding-e2e.yaml | 2 +- .github/workflows/uat-aws.yaml | 2 +- .github/workflows/uat-gcp.yaml | 2 +- .github/workflows/vuln-scan-images.yaml | 8 ++++---- .github/workflows/vuln-scan.yaml | 4 ++-- 31 files changed, 53 insertions(+), 53 deletions(-) diff --git a/.github/workflows/bom-refresh.yaml b/.github/workflows/bom-refresh.yaml index efda419d4..3b0c38393 100644 --- a/.github/workflows/bom-refresh.yaml +++ b/.github/workflows/bom-refresh.yaml @@ -47,7 +47,7 @@ jobs: pull-requests: write steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/build-attested.yaml b/.github/workflows/build-attested.yaml index 35dd43961..e9985261e 100644 --- a/.github/workflows/build-attested.yaml +++ b/.github/workflows/build-attested.yaml @@ -43,7 +43,7 @@ jobs: timeout-minutes: 25 steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0 persist-credentials: false diff --git a/.github/workflows/codeql.yaml b/.github/workflows/codeql.yaml index 3615624a0..9e918b7ec 100644 --- a/.github/workflows/codeql.yaml +++ b/.github/workflows/codeql.yaml @@ -31,7 +31,7 @@ jobs: contents: read security-events: write steps: - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false - uses: ./.github/actions/load-versions diff --git a/.github/workflows/coverage-matrix-refresh.yaml b/.github/workflows/coverage-matrix-refresh.yaml index c20988348..33384aaa6 100644 --- a/.github/workflows/coverage-matrix-refresh.yaml +++ b/.github/workflows/coverage-matrix-refresh.yaml @@ -52,7 +52,7 @@ jobs: pull-requests: write steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/deploy.yaml b/.github/workflows/deploy.yaml index 0a1d08718..ba02bafd4 100644 --- a/.github/workflows/deploy.yaml +++ b/.github/workflows/deploy.yaml @@ -44,7 +44,7 @@ jobs: TARGET_REGISTRY: 'us-docker.pkg.dev/eidosx/demo' steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/fern-docs-ci.yaml b/.github/workflows/fern-docs-ci.yaml index 790ddf8bf..b4dbc34d6 100644 --- a/.github/workflows/fern-docs-ci.yaml +++ b/.github/workflows/fern-docs-ci.yaml @@ -34,7 +34,7 @@ jobs: timeout-minutes: 10 steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - name: Setup Node.js uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0 diff --git a/.github/workflows/fern-docs-preview-build.yml b/.github/workflows/fern-docs-preview-build.yml index fab05168c..1f95327b8 100644 --- a/.github/workflows/fern-docs-preview-build.yml +++ b/.github/workflows/fern-docs-preview-build.yml @@ -43,7 +43,7 @@ jobs: timeout-minutes: 10 steps: - name: Checkout PR - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0 persist-credentials: false diff --git a/.github/workflows/gpu-h100-inference-test.yaml b/.github/workflows/gpu-h100-inference-test.yaml index ab27b961e..c040d4e54 100644 --- a/.github/workflows/gpu-h100-inference-test.yaml +++ b/.github/workflows/gpu-h100-inference-test.yaml @@ -43,7 +43,7 @@ jobs: outputs: should-run: ${{ steps.filter.outputs.matched }} steps: - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false - uses: dorny/paths-filter@fbd0ab8f3e69293af611ebaee6363fc25e6d187d # v4.0.1 diff --git a/.github/workflows/gpu-h100-kind-runtime-test.yaml b/.github/workflows/gpu-h100-kind-runtime-test.yaml index dfb7b656c..8d556c63a 100644 --- a/.github/workflows/gpu-h100-kind-runtime-test.yaml +++ b/.github/workflows/gpu-h100-kind-runtime-test.yaml @@ -64,7 +64,7 @@ jobs: steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/gpu-h100-training-test.yaml b/.github/workflows/gpu-h100-training-test.yaml index 8a2a8c5b4..11ef1ab96 100644 --- a/.github/workflows/gpu-h100-training-test.yaml +++ b/.github/workflows/gpu-h100-training-test.yaml @@ -43,7 +43,7 @@ jobs: outputs: should-run: ${{ steps.filter.outputs.matched }} steps: - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false - uses: dorny/paths-filter@fbd0ab8f3e69293af611ebaee6363fc25e6d187d # v4.0.1 diff --git a/.github/workflows/gpu-smoke-test.yaml b/.github/workflows/gpu-smoke-test.yaml index 9ff00eec2..e434d549b 100644 --- a/.github/workflows/gpu-smoke-test.yaml +++ b/.github/workflows/gpu-smoke-test.yaml @@ -37,7 +37,7 @@ jobs: outputs: should-run: ${{ steps.filter.outputs.matched }} steps: - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false - uses: dorny/paths-filter@fbd0ab8f3e69293af611ebaee6363fc25e6d187d # v4.0.1 @@ -90,7 +90,7 @@ jobs: steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/kms-ministack-e2e.yaml b/.github/workflows/kms-ministack-e2e.yaml index 9b1af4186..cb97fc88a 100644 --- a/.github/workflows/kms-ministack-e2e.yaml +++ b/.github/workflows/kms-ministack-e2e.yaml @@ -98,7 +98,7 @@ jobs: steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/kwok-recipes.yaml b/.github/workflows/kwok-recipes.yaml index e39936a66..c68346a2a 100644 --- a/.github/workflows/kwok-recipes.yaml +++ b/.github/workflows/kwok-recipes.yaml @@ -68,7 +68,7 @@ jobs: tier3_batches: ${{ steps.classify.outputs.tier3_batches }} steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false # Full checkout needed for diff-aware Tier 2 discovery @@ -278,7 +278,7 @@ jobs: deployer: [helm, argocd-oci, argocd-helm-oci, argocd-git, flux-oci, flux-git] steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false @@ -319,7 +319,7 @@ jobs: recipe: ${{ fromJSON(needs.discover.outputs.tier2) }} steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/kwok-tier3-shard.yaml b/.github/workflows/kwok-tier3-shard.yaml index fdfa0140b..13590aff9 100644 --- a/.github/workflows/kwok-tier3-shard.yaml +++ b/.github/workflows/kwok-tier3-shard.yaml @@ -42,7 +42,7 @@ jobs: pair: ${{ fromJSON(inputs.pairs) }} steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/merge-gate.yaml b/.github/workflows/merge-gate.yaml index bb3bb981f..e8e6fd0ce 100644 --- a/.github/workflows/merge-gate.yaml +++ b/.github/workflows/merge-gate.yaml @@ -54,7 +54,7 @@ jobs: deps: ${{ steps.changes.outputs.deps }} renovate: ${{ steps.changes.outputs.renovate }} steps: - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false @@ -140,7 +140,7 @@ jobs: contents: read security-events: write steps: - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false - uses: ./.github/actions/load-versions @@ -179,7 +179,7 @@ jobs: contents: read security-events: write steps: - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false - uses: ./.github/actions/malware-scan @@ -205,7 +205,7 @@ jobs: runs-on: ubuntu-latest timeout-minutes: 5 steps: - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false - name: Install actionlint @@ -259,7 +259,7 @@ jobs: runs-on: ubuntu-latest timeout-minutes: 10 steps: - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false - uses: ./.github/actions/load-versions @@ -305,7 +305,7 @@ jobs: runs-on: ubuntu-latest timeout-minutes: 5 steps: - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false - name: Validate .github/renovate.json5 diff --git a/.github/workflows/mirror-e2e.yaml b/.github/workflows/mirror-e2e.yaml index 2278f4704..8d5ceb1e5 100644 --- a/.github/workflows/mirror-e2e.yaml +++ b/.github/workflows/mirror-e2e.yaml @@ -62,7 +62,7 @@ jobs: timeout-minutes: 20 steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/on-push-comment.yaml b/.github/workflows/on-push-comment.yaml index 7993f790c..63f2498f4 100644 --- a/.github/workflows/on-push-comment.yaml +++ b/.github/workflows/on-push-comment.yaml @@ -46,7 +46,7 @@ jobs: pull-requests: write steps: - name: Checkout for go.mod version - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: sparse-checkout: go.mod sparse-checkout-cone-mode: false diff --git a/.github/workflows/on-push.yaml b/.github/workflows/on-push.yaml index 5717ae8cb..8106959d1 100644 --- a/.github/workflows/on-push.yaml +++ b/.github/workflows/on-push.yaml @@ -88,7 +88,7 @@ jobs: image_title: aicr-aiperf-bench steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false @@ -139,7 +139,7 @@ jobs: packages: write steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/on-tag.yaml b/.github/workflows/on-tag.yaml index 37058803e..ca51e0829 100644 --- a/.github/workflows/on-tag.yaml +++ b/.github/workflows/on-tag.yaml @@ -97,7 +97,7 @@ jobs: security-events: write steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0 # Full history for changelog generation persist-credentials: false @@ -167,7 +167,7 @@ jobs: image_title: aicr-aiperf-bench steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false @@ -238,7 +238,7 @@ jobs: platform: linux/arm64 steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false @@ -291,7 +291,7 @@ jobs: packages: write steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false @@ -393,7 +393,7 @@ jobs: - ghcr.io/nvidia/aicr-gate steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false @@ -454,7 +454,7 @@ jobs: attestations: write steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/packaging.yaml b/.github/workflows/packaging.yaml index 36e8a0878..cbe3d8480 100644 --- a/.github/workflows/packaging.yaml +++ b/.github/workflows/packaging.yaml @@ -38,7 +38,7 @@ jobs: timeout-minutes: 15 steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/pr-label-guard.yaml b/.github/workflows/pr-label-guard.yaml index c8a158c26..449fa0568 100644 --- a/.github/workflows/pr-label-guard.yaml +++ b/.github/workflows/pr-label-guard.yaml @@ -39,7 +39,7 @@ jobs: # composite action. On pull_request_target the default ref is the # base branch (target of the merge), so no PR code is checked out. - name: Checkout base repository - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/publish-fern-docs.yml b/.github/workflows/publish-fern-docs.yml index 31bc353d2..b2fa68fa9 100644 --- a/.github/workflows/publish-fern-docs.yml +++ b/.github/workflows/publish-fern-docs.yml @@ -61,7 +61,7 @@ jobs: timeout-minutes: 20 steps: - name: Checkout repository - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: main fetch-tags: true diff --git a/.github/workflows/qualification.yaml b/.github/workflows/qualification.yaml index 78426e5a1..f21357119 100644 --- a/.github/workflows/qualification.yaml +++ b/.github/workflows/qualification.yaml @@ -48,7 +48,7 @@ jobs: steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ inputs.ref || '' }} persist-credentials: false @@ -71,7 +71,7 @@ jobs: steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ inputs.ref || '' }} persist-credentials: false @@ -99,7 +99,7 @@ jobs: steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ inputs.ref || '' }} persist-credentials: false @@ -125,7 +125,7 @@ jobs: steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ inputs.ref || '' }} persist-credentials: false @@ -152,7 +152,7 @@ jobs: security-events: write steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ inputs.ref || '' }} persist-credentials: false diff --git a/.github/workflows/recipe-evidence.yaml b/.github/workflows/recipe-evidence.yaml index 8ff56585d..89c01147d 100644 --- a/.github/workflows/recipe-evidence.yaml +++ b/.github/workflows/recipe-evidence.yaml @@ -60,7 +60,7 @@ jobs: timeout-minutes: 15 steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false fetch-depth: 0 diff --git a/.github/workflows/recipe-health-refresh.yaml b/.github/workflows/recipe-health-refresh.yaml index f47eceea1..357a972f7 100644 --- a/.github/workflows/recipe-health-refresh.yaml +++ b/.github/workflows/recipe-health-refresh.yaml @@ -59,7 +59,7 @@ jobs: pull-requests: write steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/renovate.yaml b/.github/workflows/renovate.yaml index 75ad6f1be..b59d41ba8 100644 --- a/.github/workflows/renovate.yaml +++ b/.github/workflows/renovate.yaml @@ -73,7 +73,7 @@ jobs: # Renovate uses its own RENOVATE_TOKEN env passed into the container, # so the host-side git config never needs the credential. - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/sigstore-scaffolding-e2e.yaml b/.github/workflows/sigstore-scaffolding-e2e.yaml index c7a71ed3c..57c5c8a02 100644 --- a/.github/workflows/sigstore-scaffolding-e2e.yaml +++ b/.github/workflows/sigstore-scaffolding-e2e.yaml @@ -87,7 +87,7 @@ jobs: steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/uat-aws.yaml b/.github/workflows/uat-aws.yaml index 9feb50fda..223fdd181 100644 --- a/.github/workflows/uat-aws.yaml +++ b/.github/workflows/uat-aws.yaml @@ -63,7 +63,7 @@ jobs: steps: # Checkout - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/uat-gcp.yaml b/.github/workflows/uat-gcp.yaml index 895f31f7c..bcb428b4d 100644 --- a/.github/workflows/uat-gcp.yaml +++ b/.github/workflows/uat-gcp.yaml @@ -61,7 +61,7 @@ jobs: steps: # Checkout - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/vuln-scan-images.yaml b/.github/workflows/vuln-scan-images.yaml index 99253a371..b5beefe8c 100644 --- a/.github/workflows/vuln-scan-images.yaml +++ b/.github/workflows/vuln-scan-images.yaml @@ -52,7 +52,7 @@ jobs: packages: write steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false @@ -129,7 +129,7 @@ jobs: image_title: aicr-aiperf-bench steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false @@ -178,7 +178,7 @@ jobs: packages: write steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false @@ -223,7 +223,7 @@ jobs: - ghcr.io/nvidia/aicr-validators/aiperf-bench steps: - name: Checkout Code - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/vuln-scan.yaml b/.github/workflows/vuln-scan.yaml index 8fd52c4f9..dd995f6d6 100644 --- a/.github/workflows/vuln-scan.yaml +++ b/.github/workflows/vuln-scan.yaml @@ -33,7 +33,7 @@ jobs: security-events: write steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false @@ -53,7 +53,7 @@ jobs: security-events: write steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false