[Dependencies]: bump actions/checkout from 6.0.2 to 6.0.3 by dependabot[bot] · Pull Request #615 · credfeto/scripts

dependabot · 2026-06-03T20:16:47Z

Bumps actions/checkout from 6.0.2 to 6.0.3.

Release notes

Sourced from actions/checkout's releases.

v6.0.3

What's Changed

Update changelog by @ericsciple in actions/checkout#2357

fix: expand merge commit SHA regex and add SHA-256 test cases by @yaananth in actions/checkout#2414

Fix checkout init for SHA-256 repositories by @yaananth in actions/checkout#2439

Update changelog for v6.0.3 by @yaananth in actions/checkout#2446

New Contributors

@yaananth made their first contribution in actions/checkout#2414

Full Changelog: actions/checkout@v6...v6.0.3

Changelog

Sourced from actions/checkout's changelog.

v6.0.3

Fix checkout init for SHA-256 repositories by @yaananth in actions/checkout#2439

fix: expand merge commit SHA regex and add SHA-256 test cases by @yaananth in actions/checkout#2414

v6.0.2

Fix tag handling: preserve annotations and explicit fetch-tags by @ericsciple in actions/checkout#2356

v6.0.1

Add worktree support for persist-credentials includeIf by @ericsciple in actions/checkout#2327

v6.0.0

Persist creds to a separate file by @ericsciple in actions/checkout#2286

Update README to include Node.js 24 support details and requirements by @salmanmkc in actions/checkout#2248

v5.0.1

Port v6 cleanup to v5 by @ericsciple in actions/checkout#2301

v5.0.0

Update actions checkout to use node 24 by @salmanmkc in actions/checkout#2226

v4.3.1

Port v6 cleanup to v4 by @ericsciple in actions/checkout#2305

v4.3.0

docs: update README.md by @motss in actions/checkout#1971

Add internal repos for checking out multiple repositories by @mouismail in actions/checkout#1977

Documentation update - add recommended permissions to Readme by @benwells in actions/checkout#2043

Adjust positioning of user email note and permissions heading by @joshmgross in actions/checkout#2044

Update README.md by @nebuk89 in actions/checkout#2194

Update CODEOWNERS for actions by @TingluoHuang in actions/checkout#2224

Update package dependencies by @salmanmkc in actions/checkout#2236

v4.2.2

url-helper.ts now leverages well-known environment variables by @jww3 in actions/checkout#1941

Expand unit test coverage for isGhes by @jww3 in actions/checkout#1946

v4.2.1

Check out other refs/* by commit if provided, fall back to ref by @orhantoy in actions/checkout#1924

v4.2.0

Add Ref and Commit outputs by @lucacome in actions/checkout#1180

Dependency updates by @dependabot- actions/checkout#1777, actions/checkout#1872

v4.1.7

Bump the minor-npm-dependencies group across 1 directory with 4 updates by @dependabot in actions/checkout#1739

Bump actions/checkout from 3 to 4 by @dependabot in actions/checkout#1697

Check out other refs/* by commit by @orhantoy in actions/checkout#1774

Pin actions/checkout's own workflows to a known, good, stable version. by @jww3 in actions/checkout#1776

... (truncated)

Commits

df4cb1c Update changelog for v6.0.3 (#2446)
1cce339 Fix checkout init for SHA-256 repositories (#2439)
900f221 fix: expand merge commit SHA regex and add SHA-256 test cases (#2414)
0c366fd Update changelog (#2357)
See full diff in compare view

credfeto · 2026-06-03T21:04:00Z

@dependabot rebase

credfeto · 2026-06-03T21:04:09Z

@dependabot rebase

credfeto · 2026-06-03T21:04:31Z

@dependabot rebase

credfeto · 2026-06-04T17:26:32Z

@dependabot rebase

credfeto · 2026-06-04T18:31:18Z

@dependabot rebase

credfeto · 2026-06-04T18:31:25Z

@dependabot rebase

credfeto · 2026-06-04T21:37:18Z

@dependabot rebase

credfeto · 2026-06-04T22:26:49Z

@dependabot rebase

credfeto · 2026-06-05T09:01:16Z

@dependabot rebase

credfeto · 2026-06-05T10:42:43Z

@dependabot rebase

credfeto · 2026-06-05T10:46:36Z

@dependabot rebase

credfeto · 2026-06-05T15:07:53Z

@dependabot rebase

credfeto · 2026-06-05T15:08:04Z

@dependabot rebase

credfeto · 2026-06-05T17:56:22Z

@dependabot rebase

credfeto · 2026-06-05T19:24:03Z

@dependabot rebase

credfeto · 2026-06-08T10:19:59Z

@dependabot rebase

dependabot · 2026-06-08T10:20:02Z

Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!

If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

credfeto · 2026-06-08T10:20:05Z

@dependabot rebase

dependabot · 2026-06-08T10:20:09Z

Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!

If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

credfeto · 2026-06-08T10:20:13Z

@dependabot rebase

dependabot · 2026-06-08T10:20:17Z

Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!

If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

- on_new_pr.yml: add checkout step before local composite action usage in enable-auto-merge and auto_approve_dependabot jobs; pull_request_target runs with an empty workspace so local actions are unresolvable without an explicit checkout - pr-lint.yml: skip SOURCE_PUSH_TOKEN check for dependabot[bot] actor and fall back to github.token for super-linter so lint-code passes on Dependabot PRs where Actions secrets are unavailable - build-and-publish-pre-release.yml: skip build-pre-release job for dependabot/* branches; Dependabot pushes run in a restricted secret context where SOURCE_PUSH_TOKEN is unavailable, causing the required check to fail - pr-code-review-and-approve.yml: fall back to github.token when SOURCE_PUSH_TOKEN is not set so the Copilot review request does not error on missing required input Prompt: Work on pull request #615 in credfeto/scripts. Fix CI failures for Dependabot PRs.

credfeto · 2026-06-08T10:22:37Z

Super-linter summary

Language	Validation result
GITHUB_ACTIONS	Pass ✅
YAML	Pass ✅

All files and directories linted successfully

For more information, see the GitHub Actions workflow run

Powered by Super-linter

credfeto · 2026-06-08T14:55:26Z

@dependabot rebase

credfeto · 2026-06-08T14:55:34Z

@dependabot rebase

dependabot · 2026-06-08T14:55:38Z

Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!

If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

dependabot · 2026-06-08T14:55:38Z

Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!

If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

- on_new_pr.yml: add checkout step before local composite action usage in enable-auto-merge and auto_approve_dependabot jobs; pull_request_target runs with an empty workspace so local actions are unresolvable without an explicit checkout - pr-lint.yml: skip SOURCE_PUSH_TOKEN check for dependabot[bot] actor and fall back to github.token for super-linter so lint-code passes on Dependabot PRs where Actions secrets are unavailable - build-and-publish-pre-release.yml: skip build-pre-release job for dependabot/* branches; Dependabot pushes run in a restricted secret context where SOURCE_PUSH_TOKEN is unavailable, causing the required check to fail - pr-code-review-and-approve.yml: fall back to github.token when SOURCE_PUSH_TOKEN is not set so the Copilot review request does not error on missing required input Prompt: Work on pull request #615 in credfeto/scripts. Fix CI failures for Dependabot PRs.

credfeto · 2026-06-08T15:21:44Z

Super-linter summary

Language	Validation result
GITHUB_ACTIONS	Pass ✅
YAML	Pass ✅

All files and directories linted successfully

For more information, see the GitHub Actions workflow run

Powered by Super-linter

credfeto · 2026-06-08T16:18:04Z

@dependabot rebase

dependabot · 2026-06-08T16:18:10Z

Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!

If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

- on_new_pr.yml: add checkout step before local composite action usage in enable-auto-merge and auto_approve_dependabot jobs; pull_request_target runs with an empty workspace so local actions are unresolvable without an explicit checkout - pr-lint.yml: skip SOURCE_PUSH_TOKEN check for dependabot[bot] actor and fall back to github.token for super-linter so lint-code passes on Dependabot PRs where Actions secrets are unavailable - build-and-publish-pre-release.yml: skip build-pre-release job for dependabot/* branches; Dependabot pushes run in a restricted secret context where SOURCE_PUSH_TOKEN is unavailable, causing the required check to fail - pr-code-review-and-approve.yml: fall back to github.token when SOURCE_PUSH_TOKEN is not set so the Copilot review request does not error on missing required input Prompt: Work on pull request #615 in credfeto/scripts. Fix CI failures for Dependabot PRs.

credfeto · 2026-06-08T16:22:42Z

Super-linter summary

Language	Validation result
GITHUB_ACTIONS	Pass ✅
YAML	Pass ✅

All files and directories linted successfully

For more information, see the GitHub Actions workflow run

Powered by Super-linter

credfeto · 2026-06-08T23:02:18Z

@dependabot rebase

dependabot · 2026-06-08T23:02:22Z

Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!

If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

Bumps [actions/checkout](https://github.com/actions/checkout) from 6.0.2 to 6.0.3. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v6.0.2...v6.0.3) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 6.0.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

- on_new_pr.yml: add checkout step before local composite action usage in enable-auto-merge and auto_approve_dependabot jobs; pull_request_target runs with an empty workspace so local actions are unresolvable without an explicit checkout - pr-lint.yml: skip SOURCE_PUSH_TOKEN check for dependabot[bot] actor and fall back to github.token for super-linter so lint-code passes on Dependabot PRs where Actions secrets are unavailable - build-and-publish-pre-release.yml: skip build-pre-release job for dependabot/* branches; Dependabot pushes run in a restricted secret context where SOURCE_PUSH_TOKEN is unavailable, causing the required check to fail - pr-code-review-and-approve.yml: fall back to github.token when SOURCE_PUSH_TOKEN is not set so the Copilot review request does not error on missing required input Prompt: Work on pull request #615 in credfeto/scripts. Fix CI failures for Dependabot PRs.

- Add missing --- document-start to geoipupdate.yml and powershell-analysis.yml - Fix bracket spacing and list indentation in powershell-analysis.yml - Skip include-changelog-entry steps when PR has Changelog Not Required label

credfeto · 2026-06-08T23:19:13Z

Super-linter summary

Language	Validation result
GITHUB_ACTIONS	Pass ✅
YAML	Pass ✅

All files and directories linted successfully

For more information, see the GitHub Actions workflow run

Powered by Super-linter

dependabot Bot assigned credfeto Jun 3, 2026

dependabot Bot added Changelog Not Required No changelog entry required for this pull request dependencies Updates to dependencies github-actions Github actions workflow files labels Jun 3, 2026

dependabot Bot force-pushed the dependabot/github_actions/actions/checkout-6.0.3 branch from 6b8b161 to 60b5133 Compare June 3, 2026 21:05

dependabot Bot force-pushed the dependabot/github_actions/actions/checkout-6.0.3 branch from 60b5133 to c3e6020 Compare June 4, 2026 17:27

dependabot Bot force-pushed the dependabot/github_actions/actions/checkout-6.0.3 branch from c3e6020 to ee278db Compare June 4, 2026 18:32

dependabot Bot force-pushed the dependabot/github_actions/actions/checkout-6.0.3 branch from ee278db to 606c4e7 Compare June 4, 2026 21:38

dependabot Bot force-pushed the dependabot/github_actions/actions/checkout-6.0.3 branch from 606c4e7 to d31ef6a Compare June 4, 2026 22:27

dependabot Bot force-pushed the dependabot/github_actions/actions/checkout-6.0.3 branch from d31ef6a to 0da2e78 Compare June 5, 2026 09:02

dependabot Bot force-pushed the dependabot/github_actions/actions/checkout-6.0.3 branch from 0da2e78 to 947d682 Compare June 5, 2026 10:43

dependabot Bot force-pushed the dependabot/github_actions/actions/checkout-6.0.3 branch from 947d682 to 17a76ee Compare June 5, 2026 10:47

dependabot Bot force-pushed the dependabot/github_actions/actions/checkout-6.0.3 branch from 17a76ee to 9310bba Compare June 5, 2026 15:08

dependabot Bot force-pushed the dependabot/github_actions/actions/checkout-6.0.3 branch from 9310bba to db99686 Compare June 5, 2026 17:57

dependabot Bot force-pushed the dependabot/github_actions/actions/checkout-6.0.3 branch from db99686 to 8955a16 Compare June 5, 2026 19:24

dnyw4l3n13 force-pushed the dependabot/github_actions/actions/checkout-6.0.3 branch from 4bb1162 to 10d611f Compare June 8, 2026 10:20

dnyw4l3n13 force-pushed the dependabot/github_actions/actions/checkout-6.0.3 branch from 10d611f to 00add75 Compare June 8, 2026 15:19

dnyw4l3n13 force-pushed the dependabot/github_actions/actions/checkout-6.0.3 branch from 00add75 to 6e6837b Compare June 8, 2026 16:18

dependabot Bot and others added 3 commits June 9, 2026 00:16

dnyw4l3n13 force-pushed the dependabot/github_actions/actions/checkout-6.0.3 branch from 6e6837b to dc6841f Compare June 8, 2026 23:16

credfeto merged commit d4897f2 into main Jun 9, 2026
27 of 29 checks passed

credfeto deleted the dependabot/github_actions/actions/checkout-6.0.3 branch June 9, 2026 08:34

Uh oh!

Conversation

dependabot Bot commented on behalf of github Jun 3, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v6.0.3

What's Changed

New Contributors

v6.0.3

v6.0.2

v6.0.1

v6.0.0

v5.0.1

v5.0.0

v4.3.1

v4.3.0

v4.2.2

v4.2.1

v4.2.0

v4.1.7

Uh oh!

credfeto commented Jun 3, 2026

Uh oh!

credfeto commented Jun 3, 2026

Uh oh!

credfeto commented Jun 3, 2026

Uh oh!

credfeto commented Jun 4, 2026

Uh oh!

credfeto commented Jun 4, 2026

Uh oh!

credfeto commented Jun 4, 2026

Uh oh!

credfeto commented Jun 4, 2026

Uh oh!

credfeto commented Jun 4, 2026

Uh oh!

credfeto commented Jun 5, 2026

Uh oh!

credfeto commented Jun 5, 2026

Uh oh!

credfeto commented Jun 5, 2026

Uh oh!

credfeto commented Jun 5, 2026

Uh oh!

credfeto commented Jun 5, 2026

Uh oh!

credfeto commented Jun 5, 2026

Uh oh!

credfeto commented Jun 5, 2026

Uh oh!

credfeto commented Jun 8, 2026

Uh oh!

dependabot Bot commented on behalf of github Jun 8, 2026

Uh oh!

credfeto commented Jun 8, 2026

Uh oh!

dependabot Bot commented on behalf of github Jun 8, 2026

Uh oh!

credfeto commented Jun 8, 2026

Uh oh!

dependabot Bot commented on behalf of github Jun 8, 2026

Uh oh!

credfeto commented Jun 8, 2026

Super-linter summary

Uh oh!

credfeto commented Jun 8, 2026

Uh oh!

credfeto commented Jun 8, 2026

Uh oh!

dependabot Bot commented on behalf of github Jun 8, 2026

Uh oh!

dependabot Bot commented on behalf of github Jun 8, 2026

Uh oh!

credfeto commented Jun 8, 2026

Super-linter summary

Uh oh!

credfeto commented Jun 8, 2026

Uh oh!

dependabot Bot commented on behalf of github Jun 8, 2026

Uh oh!

dependabot Bot commented on behalf of github Jun 3, 2026 •

edited

Loading