diff --git a/.github/workflows/format.yml b/.github/workflows/format.yml index fa810e77..49b4a2a9 100644 --- a/.github/workflows/format.yml +++ b/.github/workflows/format.yml @@ -22,7 +22,7 @@ jobs: - name: Checkout code # Uses a maintainer PAT so the auto-commit push can bypass branch protection; # the default GITHUB_TOKEN pushes as `github-actions[bot]` and gets rejected. - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 # zizmor: ignore[artipacked] + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 # zizmor: ignore[artipacked] with: token: ${{ secrets.GH_ACCESS_TOKEN }} - name: Set up PHP diff --git a/.github/workflows/phpstan.yml b/.github/workflows/phpstan.yml index 4a57f6ae..e0e4db92 100644 --- a/.github/workflows/phpstan.yml +++ b/.github/workflows/phpstan.yml @@ -15,7 +15,7 @@ jobs: phpstan: runs-on: ubuntu-latest steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: persist-credentials: false - name: Cache Composer dependencies diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml index 4b74037a..c6efe6f5 100644 --- a/.github/workflows/tests.yml +++ b/.github/workflows/tests.yml @@ -15,7 +15,7 @@ jobs: run-tests: runs-on: ubuntu-latest steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: persist-credentials: false - name: Cache Composer dependencies diff --git a/.github/workflows/zizmor.yml b/.github/workflows/zizmor.yml index 3a526ecb..7643e7f6 100644 --- a/.github/workflows/zizmor.yml +++ b/.github/workflows/zizmor.yml @@ -20,7 +20,7 @@ jobs: contents: read security-events: write steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: persist-credentials: false