chore(deps): bump actions/checkout from 6.0.3 to 7.0.0#19899
chore(deps): bump actions/checkout from 6.0.3 to 7.0.0#19899dependabot[bot] wants to merge 1 commit into
Conversation
LabelsThe following labels could not be found: Please fix the above issues or remove invalid values from |
|
[APPROVALNOTIFIER] This PR is NOT APPROVED This pull-request has been approved by: The full list of commands accepted by this bot can be found here. DetailsNeeds approval from an approver in each of these files:Approvers can indicate their approval by writing |
|
👋 Hey @dependabot[bot] — thanks for opening this PR!
This is an automated message. |
✅ Test Coverage CheckAll new source files in this PR have corresponding test files. Checked |
✅ Deploy Preview for kubestellarconsole ready!
To edit notification comments on pull requests, go to your Netlify project configuration. |
Bumps [actions/checkout](https://github.com/actions/checkout) from 6.0.3 to 7.0.0. - [Release notes](https://github.com/actions/checkout/releases) - [Commits](actions/checkout@v6.0.3...v7) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 7.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
593e0f8 to
3cfe11c
Compare
|
| Workflow | Risk |
|---|---|
hold-issue-guard.yml |
Low — already guards with head.repo.full_name == github.repository |
hive-interactive.yml |
Low — same guard present |
greetings.yml |
Low — metadata-only, unlikely to checkout fork code |
pr-claude-notice.yml |
Low — comment-only workflow |
new-contributor-pr-gate.yml |
Medium — needs verification it doesn't checkout fork code |
tier-classifier.yml |
Medium — runs on synchronize, may checkout code |
copilot-automation.yml |
Medium — runs on synchronize + ready_for_review |
ai-fix.yml |
Medium — triggers on PR open |
CI Status
Multiple E2E checks failing (all 4 chromium shards + accessibility tests). These failures should be investigated to determine whether they are caused by the checkout v7 change or are pre-existing.
Recommendation
Before merging:
- Verify that none of the
pull_request_targetworkflows checkout fork PR code directly (those withhead.repo.full_name == github.repositoryguards are already safe) - Confirm E2E failures are pre-existing (compare with main branch CI status)
- Consider testing on a feature branch first given this is a major version bump
Filed by quality agent (ACMM L4/L6 — full mode)
Quality Review —
|
|
⚙️ Scanner analysis: The test failures on this PR (chromium shards, Merge Test Reports, Update Mechanism Tests) are caused by the same main-branch regression tracked in #19981 (174 test failures from the useDemoMode mock change in commit 3c38db5). This PR only bumps A fix for #19981 has been dispatched. Once that PR merges and main is green, this PR should pass CI on re-run. |
|
🐝 Scanner note: This PR cannot be merged via automation — it touches workflow files and requires Command: |
|
🤖 Scanner analysis: E2E test shards fail at "Download build artifacts" step (7 consecutive run attempts). The This Blocked from auto-fix: this PR modifies workflow files which require |
|
OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting If you change your mind, just re-open this PR and I'll resolve any conflicts on it. |
Bumps actions/checkout from 6.0.3 to 7.0.0.
Release notes
Sourced from actions/checkout's releases.
Commits
9c091bbupdate error wording (#2467)1044a6dgetting ready for checkout v7 release (#2464)f028218Bump the minor-npm-dependencies group across 1 directory with 3 updates (#2462)d914b26upgrade module to esm and update dependencies (#2463)537c7efBump@actions/coreand@actions/tool-cacheand Remove uuid (#2459)130a169Bump js-yaml from 4.1.0 to 4.2.0 (#2461)7d09575Bump flatted from 3.3.1 to 3.4.2 (#2460)0f9f3aaBump actions/publish-immutable-action (#2458)f9e715ablock checking out fork pr for pull_request_target and workflow_run (#2454)