Skip to content

Bump the actions group with 2 updates#18

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/github_actions/actions-87f6620b62
Open

Bump the actions group with 2 updates#18
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/github_actions/actions-87f6620b62

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot Bot commented on behalf of github Mar 26, 2026

Bumps the actions group with 2 updates: actions/checkout and github/gh-aw.

Updates actions/checkout from 4 to 6

Release notes

Sourced from actions/checkout's releases.

v6.0.0

What's Changed

Full Changelog: actions/checkout@v5.0.0...v6.0.0

v6-beta

What's Changed

Updated persist-credentials to store the credentials under $RUNNER_TEMP instead of directly in the local git config.

This requires a minimum Actions Runner version of v2.329.0 to access the persisted credentials for Docker container action scenarios.

v5.0.1

What's Changed

Full Changelog: actions/checkout@v5...v5.0.1

v5.0.0

What's Changed

⚠️ Minimum Compatible Runner Version

v2.327.1
Release Notes

Make sure your runner is updated to this version or newer to use this release.

Full Changelog: actions/checkout@v4...v5.0.0

v4.3.1

What's Changed

Full Changelog: actions/checkout@v4...v4.3.1

v4.3.0

What's Changed

... (truncated)

Changelog

Sourced from actions/checkout's changelog.

Changelog

v6.0.2

v6.0.1

v6.0.0

v5.0.1

v5.0.0

v4.3.1

v4.3.0

v4.2.2

v4.2.1

v4.2.0

v4.1.7

v4.1.6

... (truncated)

Commits

Updates github/gh-aw from 0.50.1 to 0.64.1

Release notes

Sourced from github/gh-aw's releases.

v0.64.1

🌟 Release Highlights

This release delivers a major expansion of the gh aw audit observability surface, a batch of important security hardening fixes, and two community-reported issues resolved — including a long-standing GHES host configuration bug.

✨ What's New

  • gh aw audit diff — Compare firewall behavior, MCP tool invocations, token usage, and run duration across two workflow runs to detect regressions and behavioral drift (gh aw audit diff <run1> <run2> [--format markdown|json]). #22996, #23118

  • Expanded gh aw audit report — Five new audit sections give you a single pane of glass: Engine Configuration, Prompt Analysis, Session & Agent Performance, Safe Output Summary, and MCP Server Health. Now also surfaces MCP Gateway guard policy enforcement blocks (integrity, repo-scope, access-denied) per tool and server. #22932, #22962

  • Safe Outputs replay via maintenance workflow — When a safe_outputs job fails or is skipped, you can now replay it manually: trigger the Agentic Maintenance workflow with operation: safe_outputs and a run URL or ID. #22973

  • Stable heredoc delimiters — Lock files no longer diff on every recompile for unchanged workflows. Heredoc delimiters are now derived from a frontmatter hash (HMAC-SHA256), making them both stable and injection-resistant. #23030

  • Agentic fraction & action minutes — New agentic_fraction (0.0–1.0) and action_minutes fields in the Agentic Observability Kit surface cost-of-goods-sold (COGS) visibility and identify workflows where data-gathering turns could be moved to deterministic shell steps. #23074

  • Post-job cleanupactions/setup now automatically removes /tmp/gh-aw/ after every job via a runs.post lifecycle hook, reducing artifact surface on shared runners. #22938

🔒 Security Fixes

  • Heredoc delimiter injection → RCE — Randomized heredoc delimiters prevent attackers from embedding the delimiter in workflow markdown to inject shell commands into generated lock files. #23004
  • Shell injection via agent file path — Closed a shellEscapeArg pre-quoted bypass that allowed crafted agent filenames (a";id;"b.md) to execute arbitrary shell commands. #23023
  • Path traversal hardening — Added MustBeWithin boundary checks to three code paths that joined user-influenced paths without validating the result stays within the base directory. #23044
  • Argument injection prevention — Compiler now rejects package/image names starting with - before invoking npm, pip, uv, or Docker, preventing flag injection via frontmatter MCP configs. #23045
  • XSS attribute strippingon* event handlers and style attributes are now stripped from allowlisted HTML tags in sanitized content, closing a bypass via <details ontoggle="...">. #22988
  • Allocation overflow fix — Fixed a potential runtime panic in buildDomainItems where len(allowed)+len(blocked) could overflow int on pathological inputs (CodeQL #558). #23059
  • Web Worker origin guard — Added origin validation to the wasm compiler worker's onmessage handler to prevent cross-origin message injection (CodeQL #546). #23063
  • Extracted log directory permissions — Replaced os.ModePerm (0777) with 0750 in extractZipFile to prevent world-readable log directories on systems with a permissive umask. #23036
  • Security dependency updatespicomatch patched for CVE-2026-33671 and CVE-2026-33672; smol-toml patched for GHSA-v3rj-xjv7-4jmq. #22990

🐛 Bug Fixes & Improvements

  • GHES host propagation fixedGH_HOST is now written to GITHUB_ENV instead of GITHUB_OUTPUT, making it available to all generated steps (checkout, safe-outputs, etc.) — not just user-typed steps. #22974
  • Cross-label concurrency — Concurrency groups for label-triggered workflows now include $\{\{ github.event.label.name }}, preventing simultaneous label additions from cancelling each other's runs. #23021
  • Rate limit resiliencegh aw update and gh aw health no longer fail fatally on transient GitHub API rate limit errors; both emit a warning and continue cleanly. #23032
  • Noop-after-failure — When the AI model server returns a transient error after the agent has already called noop, spurious failure issues are no longer filed. #23050
  • Claude audit tool durationMaxDuration for Claude engine bash tools now correctly shows N/A instead of stamping the total job time onto every tool call. #23049
  • Threat detection robustnessTHREAT_DETECTION_RESULT payloads with literal newlines in reason strings are now correctly parsed without truncation. #22982
  • AWF firewall updated to v0.25.1. #23022

📚 Documentation

  • New Token Reference page — all tokens and secrets in one place, including precedence chains, fallback logic, and App vs PAT guidance. #22916
  • New Research → Plan → Assign → Merge design pattern page. #23031
  • Added Replaying Safe Outputs guide to the safe-outputs reference. #22995
  • skip-if-check-failing and label-command triggers are now documented in the instructions file. #23086

🌍 Community Contributions

... (truncated)

Commits
  • 06c8e7e docs(cli): document --path flag for gh aw list and clarify --dir vs --path di...
  • 4cf9de0 ci-doctor: switch to codex engine, drop model override, add analysis steps di...
  • ff88a66 feat(audit): upgrade audit diff with MCP tool invocations, token usage, and...
  • df5b320 docs: update community contributions (#23085)
  • 893b701 docs: add skip-if-check-failing and label-command trigger to instructions (#2...
  • 5423055 chore: add agentic fraction & action minutes tracking (#23074)
  • 554a932 Fix allocation-size-overflow in buildDomainItems (CodeQL #558) (#23059)
  • 100202c Fix missing origin check in postMessage handler (CodeQL alert 546) (#23063)
  • a405fce Remove unused outputContainer variable in editor.js (#23061)
  • e717373 Remove unused basename import in test-wasm-golden.mjs (#23062)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the actions group with 2 updates
f6a840d 
Bumps the actions group with 2 updates: [actions/checkout](https://github.com/actions/checkout) and [github/gh-aw](https://github.com/github/gh-aw).


Updates `actions/checkout` from 4 to 6
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@v4...v6)

Updates `github/gh-aw` from 0.50.1 to 0.64.1
- [Release notes](https://github.com/github/gh-aw/releases)
- [Changelog](https://github.com/github/gh-aw/blob/main/CHANGELOG.md)
- [Commits](github/gh-aw@v0.50.1...v0.64.1)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
- dependency-name: github/gh-aw
  dependency-version: 0.64.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Mar 26, 2026
@dependabot dependabot Bot requested a review from timotheeguerin as a code owner March 26, 2026 19:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@timotheeguerin timotheeguerin Awaiting requested review from timotheeguerin timotheeguerin is a code owner

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants