HeadyAI · dependabot · Mar 19, 2026
@@ -39,7 +39,7 @@ jobs:
       has_merge_conflicts: ${{ steps.conflict_check.outputs.has_conflicts }}
       phi_math_valid: ${{ steps.phi_check.outputs.valid }}
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
         with:
           fetch-depth: 0
 
@@ -105,7 +105,7 @@ jobs:
     runs-on: ubuntu-latest
     needs: preflight
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
 
       - uses: actions/setup-node@v4
         with:
@@ -145,7 +145,7 @@ jobs:
       contents: read
       packages: write
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
 
       - name: Log in to Container Registry
         uses: docker/login-action@v4
@@ -192,7 +192,7 @@ jobs:
           - heady-buddy-portal
     steps:
       - name: Checkout site repo
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
         with:
           repository: HeadyConnection/${{ matrix.site }}
           token: ${{ secrets.HEADY_PAT }}
@@ -248,7 +248,7 @@ jobs:
     if: github.event_name == 'push' && github.ref == 'refs/heads/main'
     environment: staging
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
 
       - name: Push to Staging
         run: |
@@ -281,7 +281,7 @@ jobs:
       name: production
       url: https://headysystems.com
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
 
       - name: Push to Production
         run: |

@@ -33,7 +33,7 @@ jobs:
     name: '§7 Systematic Scan'
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
 
       - name: 'STEP 2 — Localhost contamination (ZERO TOLERANCE)'
         run: |
@@ -94,7 +94,7 @@ jobs:
     runs-on: ubuntu-latest
     needs: [systematic-scan]
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
 
       - uses: pnpm/action-setup@v5
         with:
@@ -121,7 +121,7 @@ jobs:
     runs-on: ubuntu-latest
     needs: [systematic-scan]
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
 
       - uses: pnpm/action-setup@v5
         with:
@@ -164,7 +164,7 @@ jobs:
     runs-on: ubuntu-latest
     needs: [lint]
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
 
       - uses: pnpm/action-setup@v5
         with:
@@ -217,7 +217,7 @@ jobs:
           --health-timeout 5s
           --health-retries 5
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
 
       - uses: pnpm/action-setup@v5
         with:
@@ -254,7 +254,7 @@ jobs:
       contents: read
       id-token: write
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
 
       - name: Authenticate to GCP
         uses: google-github-actions/auth@v2

@@ -48,7 +48,7 @@ jobs:
       should_deploy: ${{ steps.check.outputs.should_deploy }}
       deploy_target: ${{ steps.check.outputs.deploy_target }}
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - id: check
         run: |
           if [[ "${{ github.ref }}" == "refs/heads/production" && "${{ github.event_name }}" == "push" ]]; then
@@ -72,7 +72,7 @@ jobs:
     name: "Stage 1: Security Gates"
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
         with:
           fetch-depth: 0
 
@@ -118,7 +118,7 @@ jobs:
     name: "Stage 2: Code Quality"
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - uses: actions/setup-node@v4
         with:
           node-version: ${{ env.NODE_VERSION }}
@@ -139,7 +139,7 @@ jobs:
     runs-on: ubuntu-latest
     needs: [quality]
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - uses: actions/setup-node@v4
         with:
           node-version: ${{ env.NODE_VERSION }}
@@ -164,7 +164,7 @@ jobs:
     name: "Stage 3b: Python Tests"
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - uses: actions/setup-python@v5
         with:
           python-version: ${{ env.PYTHON_VERSION }}
@@ -180,7 +180,7 @@ jobs:
     runs-on: ubuntu-latest
     needs: [quality]
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - uses: actions/setup-node@v4
         with:
           node-version: ${{ env.NODE_VERSION }}
@@ -200,7 +200,7 @@ jobs:
     runs-on: ubuntu-latest
     needs: [test-node, security, validate]
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - uses: actions/setup-node@v4
         with:
           node-version: ${{ env.NODE_VERSION }}
@@ -223,7 +223,7 @@ jobs:
       contents: read
       id-token: write
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - name: Authenticate to Google Cloud
         uses: google-github-actions/auth@v2
         with:
@@ -261,7 +261,7 @@ jobs:
     needs: [build, preflight]
     if: needs.preflight.outputs.should_deploy == 'true'
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - uses: actions/setup-node@v4
         with:
           node-version: ${{ env.NODE_VERSION }}
@@ -287,7 +287,7 @@ jobs:
     needs: [deploy-cloud-run]
     if: always() && needs.deploy-cloud-run.result == 'success'
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - uses: actions/setup-node@v4
         with:
           node-version: ${{ env.NODE_VERSION }}

@@ -38,7 +38,7 @@ jobs:
       id-token: write
 
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
 
       - name: Authenticate to GCP
         uses: google-github-actions/auth@v2

@@ -38,7 +38,7 @@ jobs:
       id-token: write
 
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
 
       - name: Authenticate to GCP
         uses: google-github-actions/auth@v2

@@ -59,7 +59,7 @@ jobs:
             domain: docs.headysystems.com
             service: heady-site-headydocs
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - name: Auth to GCP
         uses: google-github-actions/auth@v2
         with:

@@ -26,7 +26,7 @@ jobs:
     name: 'Validate Edge Workers'
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
 
       # LR-005: Verify Host header deletion in edge proxy
       - name: 'LR-005: Check Host header handling'
@@ -54,7 +54,7 @@ jobs:
       run:
         working-directory: cloudflare/heady-edge-proxy
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
 
       - uses: actions/setup-node@v6
         with:
@@ -76,7 +76,7 @@ jobs:
       run:
         working-directory: cloudflare/worker-ai-gateway
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - uses: actions/setup-node@v6
         with:
           node-version: '22'
@@ -94,7 +94,7 @@ jobs:
       run:
         working-directory: cloudflare/worker-mcp-telemetry
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - uses: actions/setup-node@v6
         with:
           node-version: '22'

@@ -24,7 +24,7 @@ jobs:
     name: PR Preview Summary
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
         with:
           fetch-depth: 0  # Full history to diff against base
 

@@ -8,7 +8,7 @@ jobs:
   hydrate:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
         with: { fetch-depth: 0 }
       - uses: actions/setup-python@v5
         with: { python-version: "3.11" }

@@ -18,7 +18,7 @@ jobs:
   static-analysis:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - uses: actions/setup-java@v5
         with:
           distribution: temurin
@@ -53,7 +53,7 @@ jobs:
     runs-on: ubuntu-latest
     needs: static-analysis
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - uses: actions/setup-java@v5
         with:
           distribution: temurin
@@ -86,7 +86,7 @@ jobs:
     runs-on: macos-latest
     needs: unit-tests
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - uses: actions/setup-java@v5
         with:
           distribution: temurin
@@ -120,7 +120,7 @@ jobs:
     needs: instrumented-tests
     if: github.event_name == 'push' && github.ref == 'refs/heads/main'
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - uses: actions/setup-java@v5
         with:
           distribution: temurin

@@ -53,7 +53,7 @@ jobs:
             url: https://headymcp.com
 
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
 
       - name: Run Lighthouse CI
         id: lighthouse

@@ -30,7 +30,7 @@ jobs:
     name: npm audit
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
 
       - uses: actions/setup-node@v4
         with:
@@ -73,7 +73,7 @@ jobs:
     name: Secret Detection (gitleaks)
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
         with:
           fetch-depth: 0  # Full history scan
 
@@ -92,7 +92,7 @@ jobs:
     name: .env File Check
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
         with:
           fetch-depth: 0