diff --git a/.github/workflows/_reusable-circuits-core.yml b/.github/workflows/_reusable-circuits-core.yml index eec0883..244f77d 100644 --- a/.github/workflows/_reusable-circuits-core.yml +++ b/.github/workflows/_reusable-circuits-core.yml @@ -24,7 +24,7 @@ jobs: timeout-minutes: 45 steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: submodules: recursive diff --git a/.github/workflows/_reusable-contracts-core.yml b/.github/workflows/_reusable-contracts-core.yml index 5ca9623..4aada0e 100644 --- a/.github/workflows/_reusable-contracts-core.yml +++ b/.github/workflows/_reusable-contracts-core.yml @@ -22,7 +22,7 @@ jobs: working-directory: contracts steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: submodules: recursive diff --git a/.github/workflows/_reusable-contracts-fuzz.yml b/.github/workflows/_reusable-contracts-fuzz.yml index 1aef2d2..fc4a143 100644 --- a/.github/workflows/_reusable-contracts-fuzz.yml +++ b/.github/workflows/_reusable-contracts-fuzz.yml @@ -30,7 +30,7 @@ jobs: working-directory: contracts steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: submodules: recursive diff --git a/.github/workflows/_reusable-contracts-security.yml b/.github/workflows/_reusable-contracts-security.yml index 0f898ed..0fc1286 100644 --- a/.github/workflows/_reusable-contracts-security.yml +++ b/.github/workflows/_reusable-contracts-security.yml @@ -22,7 +22,7 @@ jobs: contents: read steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - name: Setup toolchain uses: ./.github/actions/setup-toolchain diff --git a/.github/workflows/_reusable-frontend-checks.yml b/.github/workflows/_reusable-frontend-checks.yml index 395acbe..7ebc764 100644 --- a/.github/workflows/_reusable-frontend-checks.yml +++ b/.github/workflows/_reusable-frontend-checks.yml @@ -29,7 +29,7 @@ jobs: steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: submodules: recursive fetch-depth: 0 diff --git a/.github/workflows/_reusable-sbom.yml b/.github/workflows/_reusable-sbom.yml index 4654193..c40beba 100644 --- a/.github/workflows/_reusable-sbom.yml +++ b/.github/workflows/_reusable-sbom.yml @@ -21,7 +21,7 @@ jobs: timeout-minutes: 10 steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: submodules: recursive diff --git a/.github/workflows/_reusable-secrets.yml b/.github/workflows/_reusable-secrets.yml index 3851846..391f320 100644 --- a/.github/workflows/_reusable-secrets.yml +++ b/.github/workflows/_reusable-secrets.yml @@ -19,7 +19,7 @@ jobs: FORCE_JAVASCRIPT_ACTIONS_TO_NODE24: true steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0 diff --git a/.github/workflows/_reusable-typecheck-lint.yml b/.github/workflows/_reusable-typecheck-lint.yml index 483dc02..91896d4 100644 --- a/.github/workflows/_reusable-typecheck-lint.yml +++ b/.github/workflows/_reusable-typecheck-lint.yml @@ -13,7 +13,7 @@ jobs: timeout-minutes: 10 steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - name: Setup Node + pnpm uses: ./.github/actions/setup-node-pnpm diff --git a/.github/workflows/bridge-e2e.yml b/.github/workflows/bridge-e2e.yml index ffc2a10..014ba11 100644 --- a/.github/workflows/bridge-e2e.yml +++ b/.github/workflows/bridge-e2e.yml @@ -47,7 +47,7 @@ jobs: fi - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: submodules: recursive diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 2ef91e6..413633a 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -33,7 +33,7 @@ jobs: FORCE_JAVASCRIPT_ACTIONS_TO_NODE24: true steps: - name: Checkout repository - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - name: Setup toolchain uses: ./.github/actions/setup-toolchain @@ -69,7 +69,7 @@ jobs: security-events: write steps: - name: Checkout repository - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - name: Setup toolchain uses: ./.github/actions/setup-toolchain diff --git a/.github/workflows/contracts-env-guard.yml b/.github/workflows/contracts-env-guard.yml index 8a6b41e..1b72ce0 100644 --- a/.github/workflows/contracts-env-guard.yml +++ b/.github/workflows/contracts-env-guard.yml @@ -31,7 +31,7 @@ jobs: steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: submodules: recursive diff --git a/.github/workflows/contracts-evidence-manifest.yml b/.github/workflows/contracts-evidence-manifest.yml index 751a3db..d4ddc7c 100644 --- a/.github/workflows/contracts-evidence-manifest.yml +++ b/.github/workflows/contracts-evidence-manifest.yml @@ -63,7 +63,7 @@ jobs: working-directory: contracts steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: submodules: recursive @@ -154,7 +154,7 @@ jobs: fi - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: submodules: recursive diff --git a/.github/workflows/contracts-mainnet-readiness.yml b/.github/workflows/contracts-mainnet-readiness.yml index 723bc58..03b113b 100644 --- a/.github/workflows/contracts-mainnet-readiness.yml +++ b/.github/workflows/contracts-mainnet-readiness.yml @@ -47,7 +47,7 @@ jobs: fi - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: submodules: recursive diff --git a/.github/workflows/contracts-production-lock-verify.yml b/.github/workflows/contracts-production-lock-verify.yml index 9358122..56ea08c 100644 --- a/.github/workflows/contracts-production-lock-verify.yml +++ b/.github/workflows/contracts-production-lock-verify.yml @@ -62,7 +62,7 @@ jobs: fi - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: submodules: recursive diff --git a/.github/workflows/contracts-promotion-checklist.yml b/.github/workflows/contracts-promotion-checklist.yml index f9b3f2e..d78ab48 100644 --- a/.github/workflows/contracts-promotion-checklist.yml +++ b/.github/workflows/contracts-promotion-checklist.yml @@ -61,7 +61,7 @@ jobs: fi - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: submodules: recursive diff --git a/.github/workflows/contracts-release-gate.yml b/.github/workflows/contracts-release-gate.yml index 40fa4a9..192cbc2 100644 --- a/.github/workflows/contracts-release-gate.yml +++ b/.github/workflows/contracts-release-gate.yml @@ -39,7 +39,7 @@ jobs: steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: submodules: recursive diff --git a/.github/workflows/contracts-staging-rehearsal.yml b/.github/workflows/contracts-staging-rehearsal.yml index c45a530..b2a657c 100644 --- a/.github/workflows/contracts-staging-rehearsal.yml +++ b/.github/workflows/contracts-staging-rehearsal.yml @@ -80,7 +80,7 @@ jobs: fi - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: submodules: recursive diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index af4f007..e70307c 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -19,7 +19,7 @@ jobs: pull-requests: write steps: - name: Checkout repository - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - name: Review dependency changes uses: actions/dependency-review-action@a1d282b36b6f3519aa1f3fc636f609c47dddb294 # v5.0.0 diff --git a/.github/workflows/docs-ci.yml b/.github/workflows/docs-ci.yml index 1c21192..48406ac 100644 --- a/.github/workflows/docs-ci.yml +++ b/.github/workflows/docs-ci.yml @@ -24,7 +24,7 @@ jobs: steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - name: Check internal links run: | diff --git a/.github/workflows/fmt.yml b/.github/workflows/fmt.yml index 6f1712b..f316da6 100644 --- a/.github/workflows/fmt.yml +++ b/.github/workflows/fmt.yml @@ -26,7 +26,7 @@ jobs: steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: submodules: recursive @@ -44,7 +44,7 @@ jobs: steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - name: Setup toolchain uses: ./.github/actions/setup-toolchain diff --git a/.github/workflows/governance.yml b/.github/workflows/governance.yml index 98991a8..5adc763 100644 --- a/.github/workflows/governance.yml +++ b/.github/workflows/governance.yml @@ -32,7 +32,7 @@ jobs: runs-on: blacksmith-2vcpu-ubuntu-2404 steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - name: Run governance policy validator run: bash scripts/ci/validate-governance-policy.sh @@ -42,7 +42,7 @@ jobs: runs-on: blacksmith-2vcpu-ubuntu-2404 steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - name: Verify governance protections env: GH_PAT: ${{ secrets.GOVERNANCE_VERIFY_PAT }} diff --git a/.github/workflows/labels.yml b/.github/workflows/labels.yml index 69869f2..25c1f64 100644 --- a/.github/workflows/labels.yml +++ b/.github/workflows/labels.yml @@ -20,7 +20,7 @@ jobs: steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - name: Sync labels uses: EndBug/label-sync@52074158190acb45f3077f9099fea818aa43f97a # v2.3.3 diff --git a/.github/workflows/pool-staging-deployment.yml b/.github/workflows/pool-staging-deployment.yml index 4887ed0..6dc9454 100644 --- a/.github/workflows/pool-staging-deployment.yml +++ b/.github/workflows/pool-staging-deployment.yml @@ -83,7 +83,7 @@ jobs: esac - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: submodules: recursive diff --git a/.github/workflows/reorg-sim.yml b/.github/workflows/reorg-sim.yml index ad82c0c..ca2afd4 100644 --- a/.github/workflows/reorg-sim.yml +++ b/.github/workflows/reorg-sim.yml @@ -22,7 +22,7 @@ jobs: if: github.event_name != 'pull_request' || github.event.pull_request.head.repo.full_name == github.repository steps: - - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0 submodules: recursive diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index b5760f6..309f986 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -32,7 +32,7 @@ jobs: FORCE_JAVASCRIPT_ACTIONS_TO_NODE24: true steps: - name: Checkout repository - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: persist-credentials: false diff --git a/.github/workflows/scripts-ci.yml b/.github/workflows/scripts-ci.yml index e4990d4..b38eea3 100644 --- a/.github/workflows/scripts-ci.yml +++ b/.github/workflows/scripts-ci.yml @@ -29,7 +29,7 @@ jobs: runs-on: blacksmith-2vcpu-ubuntu-2404 steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - name: Run shellcheck uses: ludeeus/action-shellcheck@00cae500b08a931fb5698e11e79bfbd38e612a38 # v2.0.0 @@ -41,7 +41,7 @@ jobs: runs-on: blacksmith-2vcpu-ubuntu-2404 steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - name: Install shfmt run: | diff --git a/.github/workflows/secrets-drift-guard.yml b/.github/workflows/secrets-drift-guard.yml index d852912..afe967c 100644 --- a/.github/workflows/secrets-drift-guard.yml +++ b/.github/workflows/secrets-drift-guard.yml @@ -16,7 +16,7 @@ jobs: steps: - name: Checkout - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0 diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml index a4e63d7..cc126ce 100644 --- a/.github/workflows/semgrep.yml +++ b/.github/workflows/semgrep.yml @@ -23,7 +23,7 @@ jobs: security-events: write steps: - name: Checkout repository - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0 fetch-tags: true