Bump the github-actions group across 1 directory with 3 updates (#199)

dependabot[bot] · web-flow · commit bb08f11aa00b · 2025-12-12T08:51:24.000-05:00
Bumps the github-actions group with 3 updates in the / directory: [actions/checkout](https://github.com/actions/checkout), [actions/create-github-app-token](https://github.com/actions/create-github-app-token) and [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action). Updates `actions/checkout` from 5 to 6 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v5...v6) Updates `actions/create-github-app-token` from 2.1.4 to 2.2.0 - [Release notes](https://github.com/actions/create-github-app-token/releases) - [Commits](actions/create-github-app-token@v2.1.4...v2.2.0) Updates `golangci/golangci-lint-action` from 8.0.0 to 9.1.0 - [Release notes](https://github.com/golangci/golangci-lint-action/releases) - [Commits](golangci/golangci-lint-action@v8.0.0...v9.1.0) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: actions/create-github-app-token dependency-version: 2.2.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: golangci/golangci-lint-action dependency-version: 9.1.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
diff --git a/.github/workflows/ci-test.yml b/.github/workflows/ci-test.yml
@@ -12,7 +12,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       # Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
       # Runs a set of commands using the runners shell
       - name: Invoke run_test
         run: |
diff --git a/.github/workflows/create-tag-release.yaml b/.github/workflows/create-tag-release.yaml
@@ -38,7 +38,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout the code
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/csm-release-libs.yaml b/.github/workflows/csm-release-libs.yaml
@@ -38,7 +38,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout the code
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
         with:
           fetch-depth: 0 # Fetch the full history including tags
       - name: Set up Go
diff --git a/.github/workflows/csm-versions-update.yaml b/.github/workflows/csm-versions-update.yaml
@@ -18,7 +18,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout code
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
 
       - name: Get CSM Versions from dell/csm
         id: vars
@@ -40,7 +40,7 @@ jobs:
       # Needed for signing commits using Github App tokens
       # See: https://github.com/peter-evans/create-pull-request/blob/main/docs/concepts-guidelines.md#commit-signing
       - name: Generate GitHub App Token
-        uses: actions/create-github-app-token@v2.1.4
+        uses: actions/create-github-app-token@v2.2.0
         id: generate-token
         with:
           app-id: ${{ vars.CSM_RELEASE_APP_ID }}
diff --git a/.github/workflows/go-common.yml b/.github/workflows/go-common.yml
@@ -34,7 +34,7 @@ jobs:
 
     steps:
       - name: Checkout code
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
 
       - name: Setup Go
         uses: actions/setup-go@v6
@@ -99,7 +99,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout code
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
 
       - name: Run Gosec
         uses: dell/common-github-actions/gosec-runner@main
@@ -112,7 +112,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout code
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
 
       - name: gofmt and go vet
         uses: dell/common-github-actions/go-code-formatter-vetter@main
@@ -123,7 +123,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout the code
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
       - name: Run malware scan
         uses: dell/common-github-actions/malware-scanner@main
         with:
diff --git a/.github/workflows/go-static-analysis.yaml b/.github/workflows/go-static-analysis.yaml
@@ -39,7 +39,7 @@ jobs:
           go-version: "1.25"
           cache: false
       - name: Checkout the code
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
       - name: Grab golangci-lint config file
         continue-on-error: true
         run: |
@@ -50,7 +50,7 @@ jobs:
         run: |
           go mod vendor
       - name: golangci-lint
-        uses: golangci/golangci-lint-action@v8.0.0
+        uses: golangci/golangci-lint-action@v9.1.0
         with:
           version: latest
           skip-cache: true
@@ -62,7 +62,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout the code
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
       - name: setup python
         uses: actions/setup-python@v6
         with:
diff --git a/.github/workflows/go-version-workflow.yaml b/.github/workflows/go-version-workflow.yaml
@@ -41,7 +41,7 @@ jobs:
           check-latest: true
 
       - name: Checkout the code
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
 
       # This step will update the go version in:
       # 1 - go.mod files and go.mod toolchain, if found
@@ -77,7 +77,7 @@ jobs:
 
       # Needed for signing commits using Github App tokens
       # See: https://github.com/peter-evans/create-pull-request/blob/main/docs/concepts-guidelines.md#commit-signing
-      - uses: actions/create-github-app-token@v2.1.4
+      - uses: actions/create-github-app-token@v2.2.0
         id: generate-token
         with:
           app-id: ${{ vars.CSM_RELEASE_APP_ID }}
diff --git a/.github/workflows/image-version-workflow.yaml b/.github/workflows/image-version-workflow.yaml
@@ -22,7 +22,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout the code
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
         with:
           fetch-depth: 0 # Fetch the full history including the tags
 
@@ -107,7 +107,7 @@ jobs:
 
       # Needed for signing commits using Github App tokens
       # See: https://github.com/peter-evans/create-pull-request/blob/main/docs/concepts-guidelines.md#commit-signing
-      - uses: actions/create-github-app-token@v2.1.4
+      - uses: actions/create-github-app-token@v2.2.0
         id: generate-token
         with:
           app-id: ${{ vars.CSM_RELEASE_APP_ID }}
diff --git a/.github/workflows/license-checker.yaml b/.github/workflows/license-checker.yaml
@@ -20,7 +20,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout code
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
 
       - name: Import GPG key
         uses: crazy-max/ghaction-import-gpg@v6
diff --git a/.github/workflows/operator-driver-version-update.yaml b/.github/workflows/operator-driver-version-update.yaml
@@ -27,7 +27,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout csm repository
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
         with:
           repository: dell/csm
           path: csm
@@ -65,7 +65,7 @@ jobs:
           echo "CSI_UNITY=$csi_unity" >> $GITHUB_ENV
 
       - name: Checkout csm-operator repository
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
         with:
           repository: dell/csm-operator
 
@@ -99,7 +99,7 @@ jobs:
       # Needed for signing commits using Github App tokens
       # See: https://github.com/peter-evans/create-pull-request/blob/main/docs/concepts-guidelines.md#commit-signing
       - name: Generate GitHub App Token
-        uses: actions/create-github-app-token@v2.1.4
+        uses: actions/create-github-app-token@v2.2.0
         id: generate-token
         with:
           app-id: ${{ vars.CSM_RELEASE_APP_ID }}
diff --git a/.github/workflows/operator-module-version-update.yaml b/.github/workflows/operator-module-version-update.yaml
@@ -27,7 +27,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout csm repository
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
         with:
           repository: dell/csm
           path: csm
@@ -76,7 +76,7 @@ jobs:
            echo "OTEL_COLLECTOR=$otel_collector" >> $GITHUB_ENV
 
       - name: Checkout csm-operator repository
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
         with:
           repository: dell/csm-operator
 
@@ -105,7 +105,7 @@ jobs:
       # Needed for signing commits using Github App tokens
       # See: https://github.com/peter-evans/create-pull-request/blob/main/docs/concepts-guidelines.md#commit-signing
       - name: Generate GitHub App Token
-        uses: actions/create-github-app-token@v2.1.4
+        uses: actions/create-github-app-token@v2.2.0
         id: generate-token
         with:
           app-id: ${{ vars.CSM_RELEASE_APP_ID }}
diff --git a/.github/workflows/operator-version-update.yaml b/.github/workflows/operator-version-update.yaml
@@ -27,7 +27,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout csm repository
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
         with:
           repository: dell/csm
           path: csm
@@ -46,7 +46,7 @@ jobs:
           echo "CSM_OPERATOR=$csm_operator" >> $GITHUB_ENV
 
       - name: Checkout csm-operator repository
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
         with:
           repository: dell/csm-operator
 
@@ -75,7 +75,7 @@ jobs:
       # Needed for signing commits using Github App tokens
       # See: https://github.com/peter-evans/create-pull-request/blob/main/docs/concepts-guidelines.md#commit-signing
       - name: Generate GitHub App Token
-        uses: actions/create-github-app-token@v2.1.4
+        uses: actions/create-github-app-token@v2.2.0
         id: generate-token
         with:
           app-id: ${{ vars.CSM_RELEASE_APP_ID }}
diff --git a/.github/workflows/release-creator.yaml b/.github/workflows/release-creator.yaml
@@ -30,7 +30,7 @@ jobs:
       rel_version: ${{ steps.create-rel-branch.outputs.rel_version }}
     steps:
       - name: Checkout the code
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
         with:
           fetch-depth: 0 # Fetch the full history including tags
           ref: ${{ github.ref }} # Checkout the branch from which the workflow is triggered
diff --git a/.github/workflows/scanner-test.yml b/.github/workflows/scanner-test.yml
@@ -13,7 +13,7 @@ jobs:
     name: Malware Scanner
     steps:
       - name: Checkout
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
       - name: Malware Scanner
         uses: ./malware-scanner
         with:
diff --git a/.github/workflows/sidecar-version-update.yaml b/.github/workflows/sidecar-version-update.yaml
@@ -50,7 +50,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout code
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
 
       - name: Update sidecar version
         run: |
@@ -63,7 +63,7 @@ jobs:
       # Needed for signing commits using Github App tokens
       # See: https://github.com/peter-evans/create-pull-request/blob/main/docs/concepts-guidelines.md#commit-signing
       - name: Generate GitHub App Token
-        uses: actions/create-github-app-token@v2.1.4
+        uses: actions/create-github-app-token@v2.2.0
         id: generate-token
         with:
           app-id: ${{ vars.CSM_RELEASE_APP_ID }}
diff --git a/.github/workflows/ubi-version-update.yaml b/.github/workflows/ubi-version-update.yaml
@@ -18,7 +18,7 @@ jobs:
 
     steps:
     - name: Checkout repository
-      uses: actions/checkout@v5
+      uses: actions/checkout@v6
 
     - name: Install dependencies
       id: check-skopeo
@@ -73,7 +73,7 @@ jobs:
 
  # Needed for signing commits using Github App tokens
     # See: https://github.com/peter-evans/create-pull-request/blob/main/docs/concepts-guidelines.md#commit-signing
-    - uses: actions/create-github-app-token@v2.1.4
+    - uses: actions/create-github-app-token@v2.2.0
       if: env.sha_mismatch == 'true'
       id: generate-token
       with:
diff --git a/.github/workflows/update-libraries-to-commits.yml b/.github/workflows/update-libraries-to-commits.yml
@@ -18,7 +18,7 @@ jobs:
 
     steps:
     - name: Checkout repository
-      uses: actions/checkout@v5
+      uses: actions/checkout@v6
 
     - name: Set up Go
       uses: actions/setup-go@v6
@@ -95,7 +95,7 @@ jobs:
 
     # Needed for signing commits using Github App tokens
     # See: https://github.com/peter-evans/create-pull-request/blob/main/docs/concepts-guidelines.md#commit-signing
-    - uses: actions/create-github-app-token@v2.1.4
+    - uses: actions/create-github-app-token@v2.2.0
       id: generate-token
       with:
         app-id: ${{ vars.CSM_RELEASE_APP_ID }}
diff --git a/.github/workflows/update-libraries.yml b/.github/workflows/update-libraries.yml
@@ -18,7 +18,7 @@ jobs:
 
     steps:
     - name: Checkout repository
-      uses: actions/checkout@v5
+      uses: actions/checkout@v6
 
     - name: Set up Go
       uses: actions/setup-go@v6
@@ -79,7 +79,7 @@ jobs:
 
     # Needed for signing commits using Github App tokens
     # See: https://github.com/peter-evans/create-pull-request/blob/main/docs/concepts-guidelines.md#commit-signing
-    - uses: actions/create-github-app-token@v2.1.4
+    - uses: actions/create-github-app-token@v2.2.0
       id: generate-token
       with:
         app-id: ${{ vars.CSM_RELEASE_APP_ID }}
