Bump actions/checkout from 6.0.2 to 6.0.3#555
Open
dependabot[bot] wants to merge 1 commit into
Open
Conversation
Bumps [actions/checkout](https://github.com/actions/checkout) from 6.0.2 to 6.0.3. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@de0fac2...df4cb1c) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 6.0.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
Bot
added
dependencies
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps actions/checkout from 6.0.2 to 6.0.3.
Release notes
Sourced from actions/checkout's releases.
Changelog
Sourced from actions/checkout's changelog.
... (truncated)
Commits
df4cb1cUpdate changelog for v6.0.3 (#2446)1cce339Fix checkout init for SHA-256 repositories (#2439)900f221fix: expand merge commit SHA regex and add SHA-256 test cases (#2414)0c366fdUpdate changelog (#2357)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)Greptile Summary
This PR updates
actions/checkoutfrom v6.0.2 to v6.0.3 across all five GitHub Actions workflow files, pinned by full commit SHA as required. The v6.0.3 release contains two bug fixes for SHA-256 repository support (expanded merge-commit SHA regex and corrected checkout init).build.yml,lint.yml,release.yml,tests.yml,xcodegen.yml) are updated consistently from SHAde0fac2e...todf4cb1c0....release.ymlworkflow has two separateactions/checkoutusages, both updated correctly.Confidence Score: 5/5
Safe to merge — all five workflow files are updated consistently to the same pinned SHA, and the v6.0.3 release contains only SHA-256 repository bug fixes.
The change is a mechanical version bump applied identically across all affected files, including both
actions/checkoutusages inrelease.yml. The new commit SHA matches the official v6.0.3 tag and the upstream release contains only targeted bug fixes with no breaking changes.No files require special attention.
Important Files Changed
actions/checkoutstep updated from v6.0.2 to v6.0.3 SHA pin. No other changes.actions/checkoutstep updated from v6.0.2 to v6.0.3 SHA pin. No other changes.actions/checkoutusages (lines ~71 and ~664) updated consistently to v6.0.3 SHA pin.actions/checkoutstep updated from v6.0.2 to v6.0.3 SHA pin. No other changes.actions/checkoutstep updated from v6.0.2 to v6.0.3 SHA pin. No other changes.Flowchart
%%{init: {'theme': 'neutral'}}%% flowchart TD A[Dependabot PR] --> B[actions/checkout bump] B --> C[v6.0.2 → v6.0.3] C --> D[SHA: de0fac2e → df4cb1c0] D --> E[build.yml] D --> F[lint.yml] D --> G[release.yml x2 usages] D --> H[tests.yml] D --> I[xcodegen.yml] subgraph v6.0.3 fixes J[Fix SHA-256 repo checkout init] K[Expand merge commit SHA regex] end C --> J C --> KReviews (1): Last reviewed commit: "Bump actions/checkout from 6.0.2 to 6.0...." | Re-trigger Greptile