Skip to content

chore(deps): update GitHub Actions versions#83

Merged
stranske merged 1 commit intomainfrom
chore/update-github-actions
Jan 6, 2026
Merged

chore(deps): update GitHub Actions versions#83
stranske merged 1 commit intomainfrom
chore/update-github-actions

Conversation

@stranske
Copy link
Copy Markdown
Owner

@stranske stranske commented Jan 6, 2026
edited by github-actions bot
Loading

Updates GitHub Actions to their latest versions:

  • actions/checkout: v4 → v6
  • actions/setup-python: v5 → v6
  • peter-evans/create-pull-request: v6 → v8

Why this PR?

This replaces Dependabot PRs #64, #65, #66 which were blocked by the Health 45 Agents Guard because they modified protected workflow files. Since these are dependency updates to core GitHub Actions, creating them manually allows proper review and merge.

Testing

Will verify CI passes with the updated action versions.

Source: Issue #64

Automated Status Summary

Scope

Bumps peter-evans/create-pull-request from 6 to 8.

Release notes

Sourced from peter-evans/create-pull-request's releases.

Create Pull Request v8.0.0

What's new in v8

What's Changed

New Contributors

Full Changelog: peter-evans/create-pull-request@v7.0.11...v8.0.0

Create Pull Request v7.0.11

What's Changed

Full Changelog: peter-evans/create-pull-request@v7.0.10...v7.0.11

Create Pull Request v7.0.10

⚙️ Fixes an issue where updating a pull request failed when targeting a forked repository with the same owner as its parent.

What's Changed

New Contributors

Full Changelog: peter-evans/create-pull-request@v7.0.9...v7.0.10

Create Pull Request v7.0.9

⚙️ Fixes an incompatibility with the recently released actions/checkout@v6.

What's Changed

New Contributors

... (truncated)

Commits
  • 98357b1 feat: v8 (#4260)
  • 41c0e4b Update actions/checkout references to @​v6 in docs (#4259)
  • 994332d chore: Update checkout action version to v6 (#4258)
  • 22a9089 fix: restrict remote prune to self-hosted runners (#4250)
  • d4f3be6 fix: provider list pulls fallback for multi fork same owner (#4245)
  • bc8a47f build(deps-dev): bump prettier from 3.6.2 to 3.7.3 in the npm group (#4240)
  • a67ef28 build(deps): bump the github-actions group with 2 updates (#4235)
  • 84ae59a fix: compatibility with actions/checkout@v6 (#4230)
  • b4733b9 build(deps-dev): bump js-yaml from 4.1.0 to 4.1.1 (#4222)
  • 0edc001 build(deps-dev): bump the npm group with 2 updates (#4201)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

Context for Agent

Related Issues/PRs

Tasks

  • - @dependabot rebase will rebase this PR
  • - @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • - @dependabot merge will merge this PR after your CI passes on it
  • - @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • - @dependabot cancel merge will cancel a previously requested merge and block automerging
  • - @dependabot reopen will reopen this PR if it is closed
  • - @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • - @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • - @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • - @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • - @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Acceptance criteria

  • Acceptance criteria section missing from source issue.

Head SHA: ae996cd
Latest Runs: ⏳ queued — Gate
Required: gate: ⏳ queued

Workflow / Job Result Logs
Agents PR Meta ❔ in progress View run
Autofix ❔ in progress View run
CI ⏳ queued View run
collab-admin-ci ❔ in progress View run
Copilot code review ⏳ queued View run
Gate ⏳ queued View run
Health 45 Agents Guard ❔ in progress View run

@stranske
chore(deps): update GitHub Actions versions
ae996cd 
- Bump actions/checkout from v4 to v6
- Bump actions/setup-python from v5 to v6
- Bump peter-evans/create-pull-request from v6 to v8

This replaces Dependabot PRs #64, #65, #66 which were blocked
by the agents workflow guard due to protected file modifications.
Copilot AI review requested due to automatic review settings January 6, 2026 05:26
This was referenced Jan 6, 2026
Closed
Closed
Closed
@github-actions github-actions bot added the autofix Triggers autofix on PR label Jan 6, 2026
@github-actions
Copy link
Copy Markdown
Contributor

github-actions bot commented Jan 6, 2026

Status | ✅ no new diagnostics
History points | 0
Timestamp | 2026-01-06 05:26:55 UTC
Report artifact | autofix-report-pr-83
Remaining | ∅
New | ∅
No additional artifacts

@github-actions
Copy link
Copy Markdown
Contributor

github-actions bot commented Jan 6, 2026

🤖 Keepalive Loop Status

PR #83 | Agent: Codex | Iteration 0/5

Current State

Metric Value
Iteration progress [----------] 0/5
Action wait (missing-agent-label)
Disposition skipped (transient)
Gate success
Tasks 0/12 complete
Keepalive ❌ disabled
Autofix ❌ disabled

🔍 Failure Classification

| Error type | infrastructure |
| Error category | resource |
| Suggested recovery | Confirm the referenced resource exists (repo, PR, branch, workflow, or file). |

@stranske stranske merged commit 028a1fd into main Jan 6, 2026
38 checks passed
@stranske stranske deleted the chore/update-github-actions branch January 6, 2026 05:28
Copilot AI reviewed Jan 6, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR updates GitHub Actions to newer versions across multiple workflow files. The PR aims to replace Dependabot PRs that were blocked due to modifications to protected workflow files. However, there are concerns about the version numbers being updated to.

Key Changes

  • Updates actions/checkout from v4 to v6 across all workflow files
  • Updates actions/setup-python from v5 to v6 across all workflow files
  • The PR description mentions updating peter-evans/create-pull-request from v6 to v8, but this change is not present in the provided diffs

Reviewed changes

Copilot reviewed 4 out of 4 changed files in this pull request and generated no comments.

File Description
.github/workflows/ci_admin.yml Updates checkout and setup-python actions to v6 across 6 validation jobs (rubric, config, time logs, expense logs, friction logs, documentation links)
.github/workflows/build_dashboard.yml Updates checkout and setup-python actions to v6 in the dashboard build job
.github/workflows/auto-revision-issues.yml Updates checkout and setup-python actions to v6 in the revision issues workflow
.github/workflows/agents-issue-optimizer.yml Updates checkout and setup-python actions to v6 in the issue optimizer workflow

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

No one assigned

Labels

autofix Triggers autofix on PR

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@stranske