diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 91905cf..0f0f25e 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -14,7 +14,7 @@ jobs: name: lint runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v7 - name: Set up Node uses: actions/setup-node@v4 with: @@ -31,7 +31,7 @@ jobs: name: test runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v7 # Replace this step with your actual test command - name: Run tests run: | @@ -42,7 +42,7 @@ jobs: name: secret-scan runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v7 with: fetch-depth: 0 - name: Run Gitleaks @@ -55,7 +55,7 @@ jobs: name: sast-lite runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v7 - name: Run Semgrep uses: returntocorp/semgrep-action@v1 with: diff --git a/.github/workflows/nightly-scan.yml b/.github/workflows/nightly-scan.yml index 890d6bd..5d2b639 100644 --- a/.github/workflows/nightly-scan.yml +++ b/.github/workflows/nightly-scan.yml @@ -12,7 +12,7 @@ jobs: # Use self-hosted runner labeled 'scanner' when available, fall back to ubuntu-latest runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v7 with: fetch-depth: 0 - name: Run Semgrep full ruleset @@ -33,7 +33,7 @@ jobs: name: TruffleHog deep scan runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v7 with: fetch-depth: 0 - name: Run TruffleHog