From 7452434f57a76020a783c2870bd7df591313c422 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 15 Apr 2026 17:02:03 +0000 Subject: [PATCH] Bump the all-actions group across 1 directory with 7 updates Bumps the all-actions group with 7 updates in the / directory: | Package | From | To | | --- | --- | --- | | [actions/download-artifact](https://github.com/actions/download-artifact) | `4.3.0` | `8.0.1` | | [digicert/code-signing-software-trust-action](https://github.com/digicert/code-signing-software-trust-action) | `1.1.0` | `1.2.1` | | [actions/upload-artifact](https://github.com/actions/upload-artifact) | `4.6.2` | `7.0.1` | | [docker/login-action](https://github.com/docker/login-action) | `4.0.0` | `4.1.0` | | [docker/build-push-action](https://github.com/docker/build-push-action) | `7.0.0` | `7.1.0` | | [EmbarkStudios/cargo-deny-action](https://github.com/embarkstudios/cargo-deny-action) | `2.0.15` | `2.0.16` | | [ruby/setup-ruby](https://github.com/ruby/setup-ruby) | `1.293.0` | `1.300.0` | Updates `actions/download-artifact` from 4.3.0 to 8.0.1 - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](https://github.com/actions/download-artifact/compare/v4.3.0...v8.0.1) Updates `digicert/code-signing-software-trust-action` from 1.1.0 to 1.2.1 - [Release notes](https://github.com/digicert/code-signing-software-trust-action/releases) - [Commits](https://github.com/digicert/code-signing-software-trust-action/compare/v1.1.0...v1.2.1) Updates `actions/upload-artifact` from 4.6.2 to 7.0.1 - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/v4.6.2...v7.0.1) Updates `docker/login-action` from 4.0.0 to 4.1.0 - [Release notes](https://github.com/docker/login-action/releases) - [Commits](https://github.com/docker/login-action/compare/b45d80f862d83dbcd57f89517bcf500b2ab88fb2...4907a6ddec9925e35a0a9e82d7399ccc52663121) Updates `docker/build-push-action` from 7.0.0 to 7.1.0 - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](https://github.com/docker/build-push-action/compare/d08e5c354a6adb9ed34480a06d141179aa583294...bcafcacb16a39f128d818304e6c9c0c18556b85f) Updates `EmbarkStudios/cargo-deny-action` from 2.0.15 to 2.0.16 - [Release notes](https://github.com/embarkstudios/cargo-deny-action/releases) - [Commits](https://github.com/embarkstudios/cargo-deny-action/compare/3fd3802e88374d3fe9159b834c7714ec57d6c979...175dc7fd4fb85ec8f46948fb98f44db001149081) Updates `ruby/setup-ruby` from 1.293.0 to 1.300.0 - [Release notes](https://github.com/ruby/setup-ruby/releases) - [Changelog](https://github.com/ruby/setup-ruby/blob/master/release.rb) - [Commits](https://github.com/ruby/setup-ruby/compare/dffb23f65a78bba8db45d387d5ea1bbd6be3ef18...e65c17d16e57e481586a6a5a0282698790062f92) --- updated-dependencies: - dependency-name: actions/download-artifact dependency-version: 8.0.1 dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: digicert/code-signing-software-trust-action dependency-version: 1.2.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-actions - dependency-name: actions/upload-artifact dependency-version: 7.0.1 dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: docker/login-action dependency-version: 4.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-actions - dependency-name: docker/build-push-action dependency-version: 7.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-actions - dependency-name: EmbarkStudios/cargo-deny-action dependency-version: 2.0.16 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-actions - dependency-name: ruby/setup-ruby dependency-version: 1.300.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-actions ... Signed-off-by: dependabot[bot] --- .github/workflows/binaries.yml | 6 +++--- .github/workflows/docker.yml | 8 ++++---- .github/workflows/rust.yml | 2 +- .github/workflows/test-install.yml | 2 +- .github/workflows/test-with-openzeppelin-contracts.yml | 6 +++--- .github/workflows/test-with-soroban-examples.yml | 6 +++--- 6 files changed, 15 insertions(+), 15 deletions(-) diff --git a/.github/workflows/binaries.yml b/.github/workflows/binaries.yml index 1bd2512f4..48b95a3f5 100644 --- a/.github/workflows/binaries.yml +++ b/.github/workflows/binaries.yml @@ -115,7 +115,7 @@ jobs: echo "DEB_PKG_DIR=stellar-cli_${version}_${{ matrix.arch }}" >> $GITHUB_ENV - name: Download Artifact - uses: actions/download-artifact@v8 + uses: actions/download-artifact@v8.0.1 with: name: ${{ env.ARTIFACT_NAME }} @@ -170,7 +170,7 @@ jobs: echo "SM_CLIENT_CERT_FILE=D:\\sm_client_cert.p12" >> "$GITHUB_ENV" - name: Download Artifact - uses: actions/download-artifact@v8 + uses: actions/download-artifact@v8.0.1 with: name: ${{ env.ARTIFACT_NAME }} @@ -205,7 +205,7 @@ jobs: if: github.event_name == 'release' || startsWith(github.ref, 'refs/heads/release/') || startsWith(github.head_ref, 'release/') id: stm-setup - uses: digicert/code-signing-software-trust-action@v1.1.0 + uses: digicert/code-signing-software-trust-action@v1.2.1 with: simple-signing-mode: true keypair-alias: key_1412258126 diff --git a/.github/workflows/docker.yml b/.github/workflows/docker.yml index f13fac073..2f88e15c8 100644 --- a/.github/workflows/docker.yml +++ b/.github/workflows/docker.yml @@ -40,7 +40,7 @@ jobs: run: cargo build --package stellar-cli --release - name: Upload binary - uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4 + uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 with: name: stellar-${{ matrix.arch }} path: target/release/stellar @@ -58,7 +58,7 @@ jobs: fetch-depth: 0 - name: Download binaries - uses: actions/download-artifact@d3f86a106a0bac45b974a628896c90dbdf5c8093 # v4 + uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1 with: pattern: stellar-* merge-multiple: false @@ -70,7 +70,7 @@ jobs: uses: docker/setup-buildx-action@4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd # v4 - name: Log in to Docker Hub - uses: docker/login-action@b45d80f862d83dbcd57f89517bcf500b2ab88fb2 # v4 + uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4 with: username: ${{ secrets.DOCKERHUB_USERNAME }} password: ${{ secrets.DOCKERHUB_TOKEN }} @@ -94,7 +94,7 @@ jobs: fi - name: Build and push - uses: docker/build-push-action@d08e5c354a6adb9ed34480a06d141179aa583294 # v7 + uses: docker/build-push-action@bcafcacb16a39f128d818304e6c9c0c18556b85f # v7 with: context: . platforms: linux/amd64,linux/arm64 diff --git a/.github/workflows/rust.yml b/.github/workflows/rust.yml index 145e5d4f7..c3ab68039 100644 --- a/.github/workflows/rust.yml +++ b/.github/workflows/rust.yml @@ -52,7 +52,7 @@ jobs: continue-on-error: ${{ matrix.check == 'advisories' }} steps: - uses: actions/checkout@v6 - - uses: EmbarkStudios/cargo-deny-action@3fd3802e88374d3fe9159b834c7714ec57d6c979 + - uses: EmbarkStudios/cargo-deny-action@91bf2b620e09e18d6eb78b92e7861937469acedb with: command: check ${{ matrix.check }} diff --git a/.github/workflows/test-install.yml b/.github/workflows/test-install.yml index 6ec348cd3..5265fa622 100644 --- a/.github/workflows/test-install.yml +++ b/.github/workflows/test-install.yml @@ -26,7 +26,7 @@ jobs: runs-on: ubuntu-latest steps: - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - - uses: ruby/setup-ruby@dffb23f65a78bba8db45d387d5ea1bbd6be3ef18 # v1.293.0 + - uses: ruby/setup-ruby@4c56a21280b36d862b5fc31348f463d60bdc55d5 # v1.301.0 with: ruby-version: ruby - name: Run install tests diff --git a/.github/workflows/test-with-openzeppelin-contracts.yml b/.github/workflows/test-with-openzeppelin-contracts.yml index b427d4d91..4c45a5fc7 100644 --- a/.github/workflows/test-with-openzeppelin-contracts.yml +++ b/.github/workflows/test-with-openzeppelin-contracts.yml @@ -24,7 +24,7 @@ jobs: - run: rustup update - run: sudo apt update && sudo apt install -y libudev-dev libdbus-1-dev - run: make install - - uses: actions/upload-artifact@v7 + - uses: actions/upload-artifact@v7.0.1 with: name: stellar-cli path: ~/.cargo/bin/stellar @@ -58,7 +58,7 @@ jobs: - uses: actions/checkout@v6 with: repository: OpenZeppelin/stellar-contracts - - uses: actions/download-artifact@v8 + - uses: actions/download-artifact@v8.0.1 with: name: stellar-cli path: stellar-cli @@ -89,7 +89,7 @@ jobs: id: artifact-name run: echo "name=wasm-$(echo ${{ matrix.dir }} | sed 's/\//-/g')${{ matrix.experimental_spec_shaking_v2 && '-spec-shaking-v2' || '' }}" | tee -a $GITHUB_OUTPUT - name: Upload WASM artifacts - uses: actions/upload-artifact@v7 + uses: actions/upload-artifact@v7.0.1 with: name: ${{ steps.artifact-name.outputs.name }} path: ${{ steps.find-wasm.outputs.wasm }} diff --git a/.github/workflows/test-with-soroban-examples.yml b/.github/workflows/test-with-soroban-examples.yml index 18d0c9438..b8793712a 100644 --- a/.github/workflows/test-with-soroban-examples.yml +++ b/.github/workflows/test-with-soroban-examples.yml @@ -24,7 +24,7 @@ jobs: - run: rustup update - run: sudo apt update && sudo apt install -y libudev-dev libdbus-1-dev - run: make install - - uses: actions/upload-artifact@v7 + - uses: actions/upload-artifact@v7.0.1 with: name: stellar-cli path: ~/.cargo/bin/stellar @@ -66,7 +66,7 @@ jobs: with: repository: stellar/soroban-examples ref: main - - uses: actions/download-artifact@v8 + - uses: actions/download-artifact@v8.0.1 with: name: stellar-cli path: stellar-cli @@ -97,7 +97,7 @@ jobs: id: artifact-name run: echo "name=wasm-$(echo ${{ matrix.dir }} | sed 's/\//-/g')${{ matrix.experimental_spec_shaking_v2 && '-spec-shaking-v2' || '' }}" | tee -a $GITHUB_OUTPUT - name: Upload WASM artifacts - uses: actions/upload-artifact@v7 + uses: actions/upload-artifact@v7.0.1 with: name: ${{ steps.artifact-name.outputs.name }} path: ${{ steps.find-wasm.outputs.wasm }}