chore: bump the workflow-actions group across 1 directory with 5 updates

dependabot[bot] · web-flow · commit 1f31c39e5a02 · 2025-08-26T03:42:13.000Z
Bumps the workflow-actions group with 5 updates in the / directory: | Package | From | To | | --- | --- | --- | | [zgosalvez/github-actions-ensure-sha-pinned-actions](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions) | `3.0.24` | `3.0.25` | | [actions/checkout](https://github.com/actions/checkout) | `4.2.2` | `5.0.0` | | [actions/setup-java](https://github.com/actions/setup-java) | `4.7.1` | `5.0.0` | | [gradle/actions](https://github.com/gradle/actions) | `4.3.1` | `4.4.2` | | [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) | `2.3.0` | `2.4.0` | Updates `zgosalvez/github-actions-ensure-sha-pinned-actions` from 3.0.24 to 3.0.25 - [Release notes](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/releases) - [Commits](zgosalvez/github-actions-ensure-sha-pinned-actions@2d6823d...fc87bb5) Updates `actions/checkout` from 4.2.2 to 5.0.0 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@11bd719...08c6903) Updates `actions/setup-java` from 4.7.1 to 5.0.0 - [Release notes](https://github.com/actions/setup-java/releases) - [Commits](actions/setup-java@c5195ef...dded088) Updates `gradle/actions` from 4.3.1 to 4.4.2 - [Release notes](https://github.com/gradle/actions/releases) - [Commits](gradle/actions@06832c7...017a9ef) Updates `dependabot/fetch-metadata` from 2.3.0 to 2.4.0 - [Release notes](https://github.com/dependabot/fetch-metadata/releases) - [Commits](dependabot/fetch-metadata@d7267f6...08eff52) --- updated-dependencies: - dependency-name: zgosalvez/github-actions-ensure-sha-pinned-actions dependency-version: 3.0.25 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: workflow-actions - dependency-name: actions/checkout dependency-version: 5.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: workflow-actions - dependency-name: actions/setup-java dependency-version: 5.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: workflow-actions - dependency-name: gradle/actions dependency-version: 4.4.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: workflow-actions - dependency-name: dependabot/fetch-metadata dependency-version: 2.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: workflow-actions ... Signed-off-by: dependabot[bot] <support@github.com>
diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml
@@ -20,23 +20,23 @@ jobs:
     - uses: 'hmarr/debug-action@cd1afbd7852b7ad7b1b7a9a1b03efebd3b0a1820' # v3.0.0
 
     # https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions
-    - uses: 'zgosalvez/github-actions-ensure-sha-pinned-actions@2d6823da4039243036c86d76f503c84e2ded2517' # v3.0.24
+    - uses: 'zgosalvez/github-actions-ensure-sha-pinned-actions@fc87bb5b5a97953d987372e74478de634726b3e5' # v3.0.25
 
     # https://github.com/actions/checkout
     - name: 'checkout'
-      uses: 'actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683' # v4.2.2
+      uses: 'actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8' # v5.0.0
 
     # https://github.com/actions/setup-java
     - name: 'Set up JDK'
-      uses: 'actions/setup-java@c5195efecf7bdfc987ee8bae7a71cb8b11521c00' # v4.7.1
+      uses: 'actions/setup-java@dded0888837ed1f317902acf8a20df0ad188d165' # v5.0.0
       with:
         java-version: '17'
         distribution: 'temurin'
         check-latest: 'true'
 
     # https://github.com/gradle/actions/tree/main/setup-gradle
     - name: 'Set up Gradle'
-      uses: 'gradle/actions/setup-gradle@06832c7b30a0129d7fb559bcc6e43d26f6374244' # v4
+      uses: 'gradle/actions/setup-gradle@017a9effdb900e5b5b2fddfb590a105619dca3c3' # v4
       with:
         gradle-version: 'wrapper'
         gradle-home-cache-includes: |-
@@ -48,7 +48,7 @@ jobs:
 
     # https://github.com/gradle/actions/tree/main/dependency-submission
     - name: "Generate and submit dependency graph"
-      uses: "gradle/actions/dependency-submission@06832c7b30a0129d7fb559bcc6e43d26f6374244" # v4
+      uses: "gradle/actions/dependency-submission@017a9effdb900e5b5b2fddfb590a105619dca3c3" # v4
       env:
         DEPENDENCY_GRAPH_EXCLUDE_PROJECTS: "^:(build-logic|buildSrc|.*[Tt]test.*)"
         DEPENDENCY_GRAPH_EXCLUDE_CONFIGURATIONS: ".*[Tt]est.*Classpath"
diff --git a/.github/workflows/dependabot-auto-approve-pr.yml b/.github/workflows/dependabot-auto-approve-pr.yml
@@ -14,7 +14,7 @@ jobs:
       # https://github.com/dependabot/fetch-metadata
       - name: Dependabot metadata
         id: dependabot-metadata
-        uses: "dependabot/fetch-metadata@d7267f607e9d3fb96fc2fbe83e0af444713e90b7" # v2.3.0
+        uses: "dependabot/fetch-metadata@08eff52bf64351f401fb50d4972fa95b9f2c2d1b" # v2.4.0
 
       - name: Automatically approve & merge Dependabot patch PRs
         if: ${{steps.dependabot-metadata.outputs.update-type == 'version-update:semver-patch'}}
