From d27673c50b68766d31c6998ea1710aaf9c670fca Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Mon, 6 Jul 2026 08:04:50 +0000 Subject: [PATCH] Update github-actions --- .github/workflows/chromatic.yml | 2 +- .github/workflows/ci.yml | 2 +- .github/workflows/release.yml | 2 +- .github/workflows/security-audit.yaml | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/chromatic.yml b/.github/workflows/chromatic.yml index 2e2d0cd1..bdd18a33 100644 --- a/.github/workflows/chromatic.yml +++ b/.github/workflows/chromatic.yml @@ -36,7 +36,7 @@ jobs: working-directory: lib - name: Run Chromatic - uses: chromaui/action@98132da0fca2211fb41b3af7b49ce85176007851 # latest + uses: chromaui/action@94713c544284a14195de3b50ef24301579f1877e # latest with: projectToken: ${{ secrets.CHROMATIC_PROJECT_TOKEN }} workingDir: lib diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 329fe1c8..f304d3ea 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -48,7 +48,7 @@ jobs: - uses: pnpm/action-setup@0ebf47130e4866e96fce0953f49152a61190b271 # v6.0.9 - - uses: dtolnay/rust-toolchain@29eef336d9b2848a0b548edc03f92a220660cdb8 # stable + - uses: dtolnay/rust-toolchain@4be7066ada62dd38de10e7b70166bc74ed198c30 # stable - name: Install system dependencies # apt mirrors are flaky: a healthy run finishes in <1min, but a degraded diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 8ed8fbed..8c552d8e 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -45,7 +45,7 @@ jobs: - name: Install workspace dependencies run: pnpm install --frozen-lockfile - - uses: dtolnay/rust-toolchain@29eef336d9b2848a0b548edc03f92a220660cdb8 # stable + - uses: dtolnay/rust-toolchain@4be7066ada62dd38de10e7b70166bc74ed198c30 # stable with: targets: ${{ matrix.target }} diff --git a/.github/workflows/security-audit.yaml b/.github/workflows/security-audit.yaml index 75a3e952..cc310b18 100644 --- a/.github/workflows/security-audit.yaml +++ b/.github/workflows/security-audit.yaml @@ -55,7 +55,7 @@ jobs: exit 1 - name: Audit against SECURITY.md - uses: anthropics/claude-code-action@4633baf5267540f3f8cb58b684f79901d564c280 # v1 + uses: anthropics/claude-code-action@558b1d6cab4085c7753fe402c10bef0fbb92ac7a # v1 env: # `claude-code-action` resets `GH_TOKEN` to its own internal # workflow token, so setting `GH_TOKEN` at this scope is