From f7216c25c5baaa3c8ba2210164d506dd3a183d89 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Fri, 3 Jul 2026 05:50:51 +0000 Subject: [PATCH] chore(deps): pin dependencies --- .github/workflows/codeql-analysis.yml | 8 ++++---- .../workflows/conventional-commit-pr-title.yml | 2 +- .github/workflows/dist.yml | 4 ++-- .github/workflows/release-please.yml | 6 +++--- .github/workflows/test.yml | 6 +++--- .github/workflows/update-dependencies.yml | 2 +- package-lock.json | 15 ++------------- package.json | 4 ++-- 8 files changed, 18 insertions(+), 29 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index dade73b4..96cc1e2f 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -42,11 +42,11 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v6 + uses: actions/checkout@v6.0.3 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@v4 + uses: github/codeql-action/init@v4.36.3 with: languages: ${{ matrix.language }} config-file: ./.github/codeql/codeql-config.yml @@ -58,7 +58,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@v4 + uses: github/codeql-action/autobuild@v4.36.3 # â„šī¸ Command-line programs to run using the OS shell. # 📚 https://git.io/JvXDl @@ -72,4 +72,4 @@ jobs: # make release - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v4 + uses: github/codeql-action/analyze@v4.36.3 diff --git a/.github/workflows/conventional-commit-pr-title.yml b/.github/workflows/conventional-commit-pr-title.yml index 1bd683f9..cf0b994c 100644 --- a/.github/workflows/conventional-commit-pr-title.yml +++ b/.github/workflows/conventional-commit-pr-title.yml @@ -14,6 +14,6 @@ jobs: permissions: pull-requests: read steps: - - uses: amannn/action-semantic-pull-request@v6 + - uses: amannn/action-semantic-pull-request@v6.1.1 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} \ No newline at end of file diff --git a/.github/workflows/dist.yml b/.github/workflows/dist.yml index c720a65b..4c5fd30f 100644 --- a/.github/workflows/dist.yml +++ b/.github/workflows/dist.yml @@ -7,12 +7,12 @@ jobs: build: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v6.0.3 with: token: ${{ secrets.DEVEX_BOT_TOKEN }} - name: Setup node 24 - uses: actions/setup-node@v6 + uses: actions/setup-node@v6.4.0 with: node-version: 24.11.1 diff --git a/.github/workflows/release-please.yml b/.github/workflows/release-please.yml index 5d3d84b8..2bc5fc18 100644 --- a/.github/workflows/release-please.yml +++ b/.github/workflows/release-please.yml @@ -9,14 +9,14 @@ jobs: release-please-release: runs-on: ubuntu-latest steps: - - uses: google-github-actions/release-please-action@v3 + - uses: google-github-actions/release-please-action@v3.7.13 id: release with: package-name: ${{env.ACTION_NAME}} release-type: node token: ${{ github.token }} command: github-release - - uses: actions/checkout@v6 + - uses: actions/checkout@v6.0.3 - name: tag major and minor versions if: ${{ steps.release.outputs.release_created }} run: | @@ -36,7 +36,7 @@ jobs: - release-please-release steps: - id: release-pr - uses: google-github-actions/release-please-action@v3 + uses: google-github-actions/release-please-action@v3.7.13 with: token: ${{ secrets.DEVEX_BOT_TOKEN }} release-type: node diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index 4eec9e22..e0e7db00 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -21,10 +21,10 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v6.0.3 - name: Setup node 24 - uses: actions/setup-node@v6 + uses: actions/setup-node@v6.4.0 with: node-version: 24.11.1 @@ -71,7 +71,7 @@ jobs: arch: arm64 steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@v6.0.3 - name: Install Octopus CLI uses: ./ diff --git a/.github/workflows/update-dependencies.yml b/.github/workflows/update-dependencies.yml index bc0417b5..f34fbfd7 100644 --- a/.github/workflows/update-dependencies.yml +++ b/.github/workflows/update-dependencies.yml @@ -16,7 +16,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@v6 + uses: actions/checkout@v6.0.3 - name: Self-hosted Renovate uses: renovatebot/github-action@f9c81dddc9b589e4e6ae0326d1e36f6bc415d230 # v39.2.4 diff --git a/package-lock.json b/package-lock.json index 7e737fdb..6aafc6ad 100644 --- a/package-lock.json +++ b/package-lock.json @@ -25,10 +25,10 @@ "@types/uuid": "9.0.8", "@typescript-eslint/eslint-plugin": "8.59.2", "@typescript-eslint/parser": "8.59.2", - "cross-env": "^10.1.0", + "cross-env": "10.1.0", "esbuild": "0.25.1", "eslint": "9.39.4", - "eslint-import-resolver-typescript": "^4.4.4", + "eslint-import-resolver-typescript": "4.4.4", "eslint-plugin-github": "6.0.0", "eslint-plugin-jest": "29.15.2", "globals": "16.5.0", @@ -133,7 +133,6 @@ "integrity": "sha512-RgHBCvtjbOK2gXSNBNIkNoEc9qoVEtau3hj8gEqKQuL3HZAibKarWFEI3Lfm6EYKkLalOh8eSrj9b+ch9H/VBA==", "dev": true, "license": "MIT", - "peer": true, "dependencies": { "@babel/code-frame": "^7.29.7", "@babel/generator": "^7.29.7", @@ -2704,7 +2703,6 @@ "integrity": "sha512-NZyJarBfL7nWwIq+FDL6Zp/yHEhePMNnnJ0y3qfieCrmNvYct8uvtiV41UvlSe6apAfk0fY1FbWx+NwfmpvtTg==", "dev": true, "license": "MIT", - "peer": true, "bin": { "acorn": "bin/acorn" }, @@ -3177,7 +3175,6 @@ } ], "license": "MIT", - "peer": true, "dependencies": { "baseline-browser-mapping": "^2.9.0", "caniuse-lite": "^1.0.30001759", @@ -3936,7 +3933,6 @@ "integrity": "sha512-XoMjdBOwe/esVgEvLmNsD3IRHkm7fbKIUGvrleloJXUZgDHig2IPWNniv+GwjyJXzuNqVjlr5+4yVUZjycJwfQ==", "dev": true, "license": "MIT", - "peer": true, "dependencies": { "@eslint-community/eslint-utils": "^4.8.0", "@eslint-community/regexpp": "^4.12.1", @@ -3997,7 +3993,6 @@ "integrity": "sha512-82GZUjRS0p/jganf6q1rEO25VSoHH0hKPCTrgillPjdI/3bgBhAE1QzHrHTizjpRvy6pGAvKjDJtk2pF9NDq8w==", "dev": true, "license": "MIT", - "peer": true, "bin": { "eslint-config-prettier": "bin/cli.js" }, @@ -4252,7 +4247,6 @@ "integrity": "sha512-v6UNi1+3hSlVvv8fSaoUbggEM5VErKmmpGA7Pl3HF8V6uKY7rvClBOJlH6yNwQtfTueNkGVpOv/mtWL9L4bgRA==", "dev": true, "license": "MIT", - "peer": true, "bin": { "prettier": "bin/prettier.cjs" }, @@ -4279,7 +4273,6 @@ "integrity": "sha512-whOE1HFo/qJDyX4SnXzP4N6zOWn79WhnCUY/iDR0mPfQZO8wcYE4JClzI2oZrhBnnMUCBCHZhO6VQyoBU95mZA==", "dev": true, "license": "MIT", - "peer": true, "dependencies": { "@rtsao/scc": "^1.1.0", "array-includes": "^3.1.9", @@ -5746,7 +5739,6 @@ "integrity": "sha512-NIy3oAFp9shda19hy4HK0HRTWKtPJmGdnvywu01nOqNC2vZg+Z+fvJDxpMQA88eb2I9EcafcdjYgsDthnYTvGw==", "dev": true, "license": "MIT", - "peer": true, "dependencies": { "@jest/core": "^29.7.0", "@jest/types": "^29.6.3", @@ -8284,7 +8276,6 @@ "integrity": "sha512-jl1vZzPDinLr9eUt3J/t7V6FgNEw9QjvBPdysz9KfQDD41fQrC2Y4vKQdiaUpFT4bXlb1RHhLpp8wtm6M5TgSw==", "dev": true, "license": "Apache-2.0", - "peer": true, "bin": { "tsc": "bin/tsc", "tsserver": "bin/tsserver" @@ -8352,7 +8343,6 @@ "integrity": "sha512-N9lBGA9o9aqb1hVMc9hzySbhKibHmB+N3IpoShyV6HyQYRGIhlrO5rQgttypi+yEeKsKI4idxC8Jw6gXKD4THA==", "dev": true, "license": "MIT", - "peer": true, "dependencies": { "@typescript-eslint/scope-manager": "8.49.0", "@typescript-eslint/types": "8.49.0", @@ -8629,7 +8619,6 @@ "dev": true, "hasInstallScript": true, "license": "MIT", - "peer": true, "dependencies": { "napi-postinstall": "^0.3.0" }, diff --git a/package.json b/package.json index 64a8bea3..13a4404a 100644 --- a/package.json +++ b/package.json @@ -21,10 +21,10 @@ "@types/uuid": "9.0.8", "@typescript-eslint/eslint-plugin": "8.59.2", "@typescript-eslint/parser": "8.59.2", - "cross-env": "^10.1.0", + "cross-env": "10.1.0", "esbuild": "0.25.1", "eslint": "9.39.4", - "eslint-import-resolver-typescript": "^4.4.4", + "eslint-import-resolver-typescript": "4.4.4", "eslint-plugin-github": "6.0.0", "eslint-plugin-jest": "29.15.2", "globals": "16.5.0",