Bump the dependencies group with 6 updates (#8968)

Bumps the dependencies group with 6 updates: | Package | From | To | | --- | --- | --- | | [codecov/codecov-action](https://github.com/codecov/codecov-action) | `5.1.2` | `5.3.1` | | [github/codeql-action](https://github.com/github/codeql-action) | `3.28.1` | `3.28.5` | | [anchore/sbom-action](https://github.com/anchore/sbom-action) | `0.17.9` | `0.18.0` | | [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance) | `2.1.0` | `2.2.0` | | [actions/stale](https://github.com/actions/stale) | `9.0.0` | `9.1.0` | | [crowdin/github-action](https://github.com/crowdin/github-action) | `2.5.1` | `2.5.2` | Updates `codecov/codecov-action` from 5.1.2 to 5.3.1 - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](1e68e06f1d...13ce06bfc6) Updates `github/codeql-action` from 3.28.1 to 3.28.5 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](b6a472f63d...f6091c0113) Updates `anchore/sbom-action` from 0.17.9 to 0.18.0 - [Release notes](https://github.com/anchore/sbom-action/releases) - [Changelog](https://github.com/anchore/sbom-action/blob/main/RELEASE.md) - [Commits](df80a981bc...f325610c9f) Updates `actions/attest-build-provenance` from 2.1.0 to 2.2.0 - [Release notes](https://github.com/actions/attest-build-provenance/releases) - [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md) - [Commits](7668571508...520d128f16) Updates `actions/stale` from 9.0.0 to 9.1.0 - [Release notes](https://github.com/actions/stale/releases) - [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md) - [Commits](28ca103628...5bef64f19d) Updates `crowdin/github-action` from 2.5.1 to 2.5.2 - [Release notes](https://github.com/crowdin/github-action/releases) - [Commits](d1632879d4...b811e49583) --- updated-dependencies: - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: anchore/sbom-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: actions/attest-build-provenance dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: actions/stale dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: crowdin/github-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-04-27 19:16:44 +00:00 · 2025-01-28 11:11:41 +11:00 · 2025-01-28 11:11:41 +11:00 · cd19a8e508
commit cd19a8e508
parent f7f6e27c6e
5 changed files with 9 additions and 9 deletions
--- a/.github/workflows/qc_checks.yaml
+++ b/.github/workflows/qc_checks.yaml
@ -330,7 +330,7 @@ jobs:
      - name: Coverage Tests
        run: invoke dev.test --coverage --translations
      - name: Upload coverage reports to Codecov
-        uses: codecov/codecov-action@1e68e06f1dbfde0e4cefc87efeba9e4643565303 # pin@v5.1.2
+        uses: codecov/codecov-action@13ce06bfc6bbe3ecf90edbbf1bc32fe5978ca1d3 # pin@v5.3.1
        if: always()
        with:
          token: ${{ secrets.CODECOV_TOKEN }}
@ -473,7 +473,7 @@ jobs:
      - name: Run Tests
        run: invoke dev.test --migrations --report --coverage --translations
      - name: Upload coverage reports to Codecov
-        uses: codecov/codecov-action@1e68e06f1dbfde0e4cefc87efeba9e4643565303 # pin@v5.1.2
+        uses: codecov/codecov-action@13ce06bfc6bbe3ecf90edbbf1bc32fe5978ca1d3 # pin@v5.3.1
        if: always()
        with:
          token: ${{ secrets.CODECOV_TOKEN }}
@ -584,7 +584,7 @@ jobs:
        if: always()
        run: cd src/frontend && npx nyc report --report-dir ./coverage --temp-dir .nyc_output --reporter=lcov --exclude-after-remap false
      - name: Upload coverage reports to Codecov
-        uses: codecov/codecov-action@1e68e06f1dbfde0e4cefc87efeba9e4643565303 # pin@v5.1.2
+        uses: codecov/codecov-action@13ce06bfc6bbe3ecf90edbbf1bc32fe5978ca1d3 # pin@v5.3.1
        if: always()
        with:
          token: ${{ secrets.CODECOV_TOKEN }}
@ -646,7 +646,7 @@ jobs:
        env:
          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
      - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c # pin@v3
+        uses: github/codeql-action/upload-sarif@f6091c0113d1dcf9b98e269ee48e8a7e51b7bdd4 # pin@v3
        with:
          sarif_file: results.sarif
          category: zizmor
--- a/.github/workflows/release.yaml
+++ b/.github/workflows/release.yaml
@ -53,7 +53,7 @@ jobs:
      - name: Build frontend
        run: cd src/frontend && npm run compile && npm run build
      - name: Create SBOM for frontend
-        uses: anchore/sbom-action@df80a981bc6edbc4e220a492d3cbe9f5547a6e75 # pin@v0
+        uses: anchore/sbom-action@f325610c9f50a54015d37c8d16cb3b0e2c8f4de0 # pin@v0
        with:
          artifact-name: frontend-build.spdx
          path: src/frontend
@ -69,7 +69,7 @@ jobs:
          zip -r ../frontend-build.zip * .vite
      - name: Attest Build Provenance
        id: attest
-        uses: actions/attest-build-provenance@7668571508540a607bdfd90a87a560489fe372eb # pin@v1
+        uses: actions/attest-build-provenance@520d128f165991a6c774bcb264f323e3d70747f4 # pin@v1
        with:
          subject-path: "${{ github.workspace }}/src/backend/InvenTree/web/static/frontend-build.zip"

--- a/.github/workflows/scorecard.yaml
+++ b/.github/workflows/scorecard.yaml
@ -67,6 +67,6 @@ jobs:

      # Upload the results to GitHub's code scanning dashboard.
      - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c # v3.28.1
+        uses: github/codeql-action/upload-sarif@f6091c0113d1dcf9b98e269ee48e8a7e51b7bdd4 # v3.28.5
        with:
          sarif_file: results.sarif
--- a/.github/workflows/stale.yaml
+++ b/.github/workflows/stale.yaml
@ -16,7 +16,7 @@ jobs:
      pull-requests: write

    steps:
-      - uses: actions/stale@28ca1036281a5e5922ead5184a1bbf96e5fc984e # pin@v9.0.0
+      - uses: actions/stale@5bef64f19d7facfb25b37b414482c7164d639639 # pin@v9.1.0
        with:
          repo-token: ${{ secrets.GITHUB_TOKEN }}
          stale-issue-message: "This issue seems stale. Please react to show this is still important."
--- a/.github/workflows/translations.yaml
+++ b/.github/workflows/translations.yaml
@ -53,7 +53,7 @@ jobs:
          git reset --hard
          git reset HEAD~
      - name: crowdin action
-        uses: crowdin/github-action@d1632879d4d4da358f2d040f79fa094571c9a649 # pin@v2
+        uses: crowdin/github-action@b811e495831e49ff516e7c801f7c5546879b9ee7 # pin@v2
        with:
          upload_sources: true
          upload_translations: false