diff --git a/.github/workflows/assemble.yml b/.github/workflows/assemble.yml index 9dcd525866a9b..c8092d2cf6b0d 100644 --- a/.github/workflows/assemble.yml +++ b/.github/workflows/assemble.yml @@ -10,7 +10,7 @@ jobs: java: [ 21, 25 ] os: [ubuntu-latest, windows-latest, macos-15, ubuntu-24.04-arm] steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 - name: Set up JDK ${{ matrix.java }} uses: actions/setup-java@v5 with: diff --git a/.github/workflows/auto-release.yml b/.github/workflows/auto-release.yml index 95a7c2ae4f64d..2a72f68e9babd 100644 --- a/.github/workflows/auto-release.yml +++ b/.github/workflows/auto-release.yml @@ -22,7 +22,7 @@ jobs: - name: Get tag id: tag uses: dawidd6/action-get-tag@v1 - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 - uses: ncipollo/release-action@v1 with: github_token: ${{ steps.github_app_token.outputs.token }} diff --git a/.github/workflows/benchmark-pull-request.yml b/.github/workflows/benchmark-pull-request.yml index 1d59ba0149741..7ef07e36e4edc 100644 --- a/.github/workflows/benchmark-pull-request.yml +++ b/.github/workflows/benchmark-pull-request.yml @@ -16,7 +16,7 @@ jobs: pull-requests: write steps: - name: Checkout Repository - uses: actions/checkout@v5 + uses: actions/checkout@v6 - name: Set up required env vars run: | echo "PR_NUMBER=${{ github.event.issue.number }}" >> $GITHUB_ENV @@ -135,7 +135,7 @@ jobs: issue-body: "Please approve or deny the benchmark run for PR #${{ env.PR_NUMBER }}" exclude-workflow-initiator-as-approver: false - name: Checkout PR Repo - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: repository: ${{ env.prHeadRepo }} ref: ${{ env.prHeadRefSha }} @@ -159,7 +159,7 @@ jobs: aws s3 cp distribution/archives/linux-tar/build/distributions/opensearch-min-$OPENSEARCH_VERSION-linux-x64.tar.gz s3://${{ secrets.ARCHIVE_ARTIFACT_BUCKET_NAME }}/PR-$PR_NUMBER/ echo "DISTRIBUTION_URL=${{ secrets.ARTIFACT_BUCKET_CLOUDFRONT_URL }}/PR-$PR_NUMBER/opensearch-min-$OPENSEARCH_VERSION-linux-x64.tar.gz" >> $GITHUB_ENV - name: Checkout opensearch-build repo - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: repository: opensearch-project/opensearch-build ref: main diff --git a/.github/workflows/changelog_verifier.yml b/.github/workflows/changelog_verifier.yml index d6d0c7a47f731..fae03cbe34713 100644 --- a/.github/workflows/changelog_verifier.yml +++ b/.github/workflows/changelog_verifier.yml @@ -9,7 +9,7 @@ jobs: if: github.repository == 'opensearch-project/OpenSearch' runs-on: ubuntu-latest steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 with: token: ${{ secrets.GITHUB_TOKEN }} ref: ${{ github.event.pull_request.head.sha }} diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 4f4e4b3deb056..6b1b13eba87e3 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -35,7 +35,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v5 + uses: actions/checkout@v6 - name: Set up JDK 21 uses: actions/setup-java@v4 with: diff --git a/.github/workflows/create-documentation-issue.yml b/.github/workflows/create-documentation-issue.yml index 71e87784c16c6..21f3cfae81f47 100644 --- a/.github/workflows/create-documentation-issue.yml +++ b/.github/workflows/create-documentation-issue.yml @@ -21,7 +21,7 @@ jobs: installation_id: 22958780 - name: Checkout code - uses: actions/checkout@v5 + uses: actions/checkout@v6 - name: Edit the issue template run: | diff --git a/.github/workflows/dependabot_pr.yml b/.github/workflows/dependabot_pr.yml index 3178e2c4bee5c..4939c1e882844 100644 --- a/.github/workflows/dependabot_pr.yml +++ b/.github/workflows/dependabot_pr.yml @@ -18,7 +18,7 @@ jobs: installation_id: 22958780 - name: Check out code - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: token: ${{ steps.github_app_token.outputs.token }} ref: ${{ github.head_ref }} diff --git a/.github/workflows/detect-breaking-change.yml b/.github/workflows/detect-breaking-change.yml index d9a0aa000f79e..45019ef5e4436 100644 --- a/.github/workflows/detect-breaking-change.yml +++ b/.github/workflows/detect-breaking-change.yml @@ -6,7 +6,7 @@ jobs: detect-breaking-change: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 - uses: actions/setup-java@v5 with: distribution: temurin # Temurin is a distribution of adoptium diff --git a/.github/workflows/gradle-check.yml b/.github/workflows/gradle-check.yml index 78c47dc32e697..a2e6973d44407 100644 --- a/.github/workflows/gradle-check.yml +++ b/.github/workflows/gradle-check.yml @@ -21,7 +21,7 @@ jobs: outputs: RUN_GRADLE_CHECK: ${{ steps.changed-files-specific.outputs.any_changed }} steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 - name: Get changed files id: changed-files-specific uses: tj-actions/changed-files@v47.0.0 @@ -42,7 +42,7 @@ jobs: timeout-minutes: 130 steps: - name: Checkout OpenSearch repo - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: ref: ${{ github.event.pull_request.head.sha }} @@ -93,7 +93,7 @@ jobs: echo "post_merge_action=true" >> $GITHUB_ENV - name: Checkout opensearch-build repo - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: repository: opensearch-project/opensearch-build ref: main diff --git a/.github/workflows/links.yml b/.github/workflows/links.yml index 533db328b4d23..bb2f4bb9d8a35 100644 --- a/.github/workflows/links.yml +++ b/.github/workflows/links.yml @@ -10,7 +10,7 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 - name: lychee Link Checker id: lychee uses: lycheeverse/lychee-action@v2.6.1 diff --git a/.github/workflows/lucene-snapshots.yml b/.github/workflows/lucene-snapshots.yml index 1b1c838ce9a90..c09f4c1f470d8 100644 --- a/.github/workflows/lucene-snapshots.yml +++ b/.github/workflows/lucene-snapshots.yml @@ -28,7 +28,7 @@ jobs: steps: - name: Checkout Lucene ref:${{ github.event.inputs.ref }} - uses: actions/checkout@v5 + uses: actions/checkout@v6 with: repository: 'apache/lucene' ref: ${{ github.event.inputs.ref }} diff --git a/.github/workflows/precommit.yml b/.github/workflows/precommit.yml index b6ba15fe1c598..f2e490e233b0c 100644 --- a/.github/workflows/precommit.yml +++ b/.github/workflows/precommit.yml @@ -14,7 +14,7 @@ jobs: os: 'windows-2025' experimental: true steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 - name: Set up JDK ${{ matrix.java }} uses: actions/setup-java@v5 with: diff --git a/.github/workflows/publish-maven-snapshots.yml b/.github/workflows/publish-maven-snapshots.yml index 6b6158a354cdb..f74b285a15b94 100644 --- a/.github/workflows/publish-maven-snapshots.yml +++ b/.github/workflows/publish-maven-snapshots.yml @@ -18,7 +18,7 @@ jobs: contents: write steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 - name: Set up JDK 21 uses: actions/setup-java@v5 with: diff --git a/.github/workflows/version.yml b/.github/workflows/version.yml index fe95cc9cb9adb..2417354d0f013 100644 --- a/.github/workflows/version.yml +++ b/.github/workflows/version.yml @@ -49,7 +49,7 @@ jobs: echo "NEXT_VERSION_UNDERSCORE=$NEXT_VERSION_UNDERSCORE" >> $GITHUB_ENV echo "NEXT_VERSION_ID=$NEXT_VERSION_ID" >> $GITHUB_ENV - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 with: ref: ${{ env.BASE }} @@ -75,7 +75,7 @@ jobs: body: | I've noticed that a new tag ${{ env.TAG }} was pushed, and incremented the version from ${{ env.CURRENT_VERSION }} to ${{ env.NEXT_VERSION }}. - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 with: ref: ${{ env.MAIN_BRANCH }} diff --git a/.github/workflows/wrapper.yml b/.github/workflows/wrapper.yml index e9803c2939e44..21e8821af15df 100644 --- a/.github/workflows/wrapper.yml +++ b/.github/workflows/wrapper.yml @@ -7,5 +7,5 @@ jobs: if: github.repository == 'opensearch-project/OpenSearch' runs-on: ubuntu-latest steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@v6 - uses: gradle/actions/wrapper-validation@v5 diff --git a/CHANGELOG.md b/CHANGELOG.md index f8afacb5ed267..45850f1f1800c 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -141,6 +141,7 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), - Bump `actions/upload-artifact` from 4 to 5 ([#20081](https://github.com/opensearch-project/OpenSearch/pull/20081)) - Bump `com.nimbusds:nimbus-jose-jwt` from 10.5 to 10.6 ([#20084](https://github.com/opensearch-project/OpenSearch/pull/20084)) - Bump `commons-logging` from 1.2 to 1.3.5 ([#20156](https://github.com/opensearch-project/OpenSearch/pull/20156)) +- Bump `actions/checkout` from 5 to 6 ([#20186](https://github.com/opensearch-project/OpenSearch/pull/20186)) - Bump `org.apache.commons:commons-configuration2` from 2.12.0 to 2.13.0 ([#20185](https://github.com/opensearch-project/OpenSearch/pull/20185)) ### Deprecated