diff --git a/.github/actions/setup-go/action.yml b/.github/actions/setup-go/action.yml index 1d107ba225..25aa212a99 100644 --- a/.github/actions/setup-go/action.yml +++ b/.github/actions/setup-go/action.yml @@ -42,7 +42,7 @@ runs: echo "version=$version" >> "$GITHUB_OUTPUT" - name: Set up Go - uses: actions/setup-go@v5 + uses: actions/setup-go@v6 with: go-version: ${{ steps.go-version.outputs.version }} cache: false diff --git a/.github/workflows/api-diff.yml b/.github/workflows/api-diff.yml index e6826bf1de..543c6d7f52 100644 --- a/.github/workflows/api-diff.yml +++ b/.github/workflows/api-diff.yml @@ -19,7 +19,7 @@ jobs: fetch-depth: 0 - name: Set up Go - uses: actions/setup-go@v5 + uses: actions/setup-go@v6 with: go-version-file: "go.mod" cache: false diff --git a/.github/workflows/build-test.yml b/.github/workflows/build-test.yml index 09d0d07a51..a51ea60b73 100644 --- a/.github/workflows/build-test.yml +++ b/.github/workflows/build-test.yml @@ -25,11 +25,11 @@ jobs: steps: - name: Checkout - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - name: Set up Go if: ${{ matrix.type.should-run == 'true' }} - uses: actions/setup-go@v5 + uses: actions/setup-go@v6 with: cache-dependency-path: ${{ matrix.type.path }}/go.sum go-version-file: ${{ matrix.type.path }}/go.mod @@ -79,7 +79,7 @@ jobs: - name: Upload Go test results if: ${{ matrix.type.should-run == 'true' }} - uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3 + uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 with: name: go-test-results path: | @@ -103,10 +103,10 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - name: Set up Go - uses: actions/setup-go@v5 + uses: actions/setup-go@v6 with: cache-dependency-path: go.sum go-version-file: go.mod diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml index b17d2b067a..1f53ec80c8 100644 --- a/.github/workflows/golangci-lint.yml +++ b/.github/workflows/golangci-lint.yml @@ -17,10 +17,10 @@ jobs: run: echo "TAR_OPTIONS=--skip-old-files" >> $GITHUB_ENV - name: Checkout repository - uses: actions/checkout@v4 + uses: actions/checkout@v6 - name: Set up Go - uses: actions/setup-go@v5 + uses: actions/setup-go@v6 with: cache-dependency-path: go.sum go-version-file: go.mod diff --git a/.github/workflows/solidity-foundry-artifacts.yml b/.github/workflows/solidity-foundry-artifacts.yml index 40c16a2574..9510b2d178 100644 --- a/.github/workflows/solidity-foundry-artifacts.yml +++ b/.github/workflows/solidity-foundry-artifacts.yml @@ -46,7 +46,7 @@ jobs: changeset_files: ${{ steps.changes-dorny.outputs.changeset_files }} steps: - name: Checkout the repo - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: persist-credentials: false ref: ${{ env.head_ref }} @@ -120,7 +120,7 @@ jobs: generate_code_coverage: ${{ steps.skip-code-coverage.outputs.generate_code_coverage }} steps: - name: Checkout the repo - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: persist-credentials: false diff --git a/.github/workflows/solidity-foundry.yml b/.github/workflows/solidity-foundry.yml index 2883cae90f..52c166a6c0 100644 --- a/.github/workflows/solidity-foundry.yml +++ b/.github/workflows/solidity-foundry.yml @@ -47,7 +47,7 @@ jobs: echo "matrix=$matrix" >> $GITHUB_OUTPUT - name: Checkout the repo - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: persist-credentials: false @@ -64,7 +64,7 @@ jobs: all_changes: ${{ steps.changes.outputs.changes }} steps: - name: Checkout the repo - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: persist-credentials: false - name: Detect changes @@ -144,7 +144,7 @@ jobs: ${{ contains(fromJson(needs.changes.outputs.all_changes), matrix.product.name) || contains(fromJson(needs.changes.outputs.all_changes), 'shared') || needs.changes.outputs.non_src_changes == 'true' }} - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: persist-credentials: false submodules: recursive @@ -197,7 +197,7 @@ jobs: && (contains(fromJson(needs.changes.outputs.all_changes), matrix.product.name) || contains(fromJson(needs.changes.outputs.all_changes), 'shared') || needs.changes.outputs.non_src_changes == 'true') }} - uses: baptiste0928/cargo-install@904927dbe77864e0f2281519fe9d5bd097a220b3 # v3.1.1 + uses: baptiste0928/cargo-install@b687c656bda5733207e629b50a22bf68974a0305 # v3.3.2 with: crate: svm-rs version: "0.5.17" @@ -273,7 +273,7 @@ jobs: || contains(fromJson(needs.changes.outputs.all_changes), 'shared') || needs.changes.outputs.non_src_changes == 'true') && matrix.product.setup.run-coverage }} - uses: hrishikesh-kadam/setup-lcov@f5da1b26b0dcf5d893077a3c4f29cf78079c841d # v1.0.0 + uses: hrishikesh-kadam/setup-lcov@6c1aa0cc9e1c02f9f58f01ac599f1064ccc83470 # v1.1.0 - name: Run coverage for ${{ matrix.product.name }} if: @@ -307,7 +307,7 @@ jobs: || contains(fromJson(needs.changes.outputs.all_changes), 'shared') || needs.changes.outputs.non_src_changes == 'true') && matrix.product.setup.run-coverage }} - uses: zgosalvez/github-actions-report-lcov@a546f89a65a0cdcd82a92ae8d65e74d450ff3fbc # v4.1.4 + uses: zgosalvez/github-actions-report-lcov@4eb99c09644c30cceb609413620bd9e1bf80ee79 # v6.0.1 with: update-comment: false coverage-files: ./contracts${{ matrix.product.setup.subfolder || '' }}/lcov.info.pruned @@ -323,12 +323,12 @@ jobs: runs-on: ubuntu-22.04 steps: - name: Checkout this repository - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: persist-credentials: false - name: Checkout .github repository - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: persist-credentials: false repository: smartcontractkit/.github @@ -342,7 +342,7 @@ jobs: uses: ./.github/actions/install-solidity-foundry - name: Set up Python - uses: actions/setup-python@v5 + uses: actions/setup-python@v6 with: python-version: "3.8" @@ -373,7 +373,7 @@ jobs: # in that case we extract new issues introduced by the changes by using an LLM model - name: Upload Slither results for current branch if: needs.changes.outputs.sol_mod_only == 'true' - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v6 timeout-minutes: 2 continue-on-error: true with: @@ -384,7 +384,7 @@ jobs: # we need to upload scripts and configuration in case base_ref doesn't have the scripts, or they are in different version - name: Upload Slither scripts if: needs.changes.outputs.sol_mod_only == 'true' - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v6 timeout-minutes: 2 continue-on-error: true with: @@ -394,7 +394,7 @@ jobs: - name: Upload configs if: needs.changes.outputs.sol_mod_only == 'true' - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v6 timeout-minutes: 2 with: name: tmp-configs-${{ github.sha }} @@ -405,21 +405,21 @@ jobs: - name: Checkout earlier version of this repository if: needs.changes.outputs.sol_mod_only == 'true' - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: persist-credentials: false ref: ${{ github.base_ref }} - name: Download Slither scripts if: needs.changes.outputs.sol_mod_only == 'true' - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v7 with: name: tmp-slither-scripts-${{ github.sha }} path: ./dot_github/tools/scripts/solidity - name: Download configs if: needs.changes.outputs.sol_mod_only == 'true' - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v7 with: name: tmp-configs-${{ github.sha }} path: contracts/configs @@ -456,7 +456,7 @@ jobs: - name: Upload Slither report if: needs.changes.outputs.sol_mod_only == 'true' - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v6 timeout-minutes: 10 continue-on-error: true with: @@ -467,7 +467,7 @@ jobs: - name: Download Slither results for current branch if: needs.changes.outputs.sol_mod_only == 'true' - uses: actions/download-artifact@v4 + uses: actions/download-artifact@v7 with: name: slither-reports-current-${{ github.sha }} path: contracts/slither-reports-current @@ -520,7 +520,7 @@ jobs: sol_files: ${{ needs.changes.outputs.not_test_sol_modified_files }} - name: Upload Slither reports - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v6 timeout-minutes: 10 continue-on-error: true with: @@ -532,7 +532,7 @@ jobs: - name: Find Slither comment in the PR # We only want to create the comment if the PR is not modified by a bot if: "(github.event_name == 'push' && github.event.pusher.username && ! contains(github.event.pusher.username, '[bot]')) || (github.event_name != 'push' && ! contains(github.actor, '[bot]'))" - uses: peter-evans/find-comment@3eae4d37986fb5a8592848f6a574fdf654e61f9e # v3.0.0 + uses: peter-evans/find-comment@b30e6a3c0ed37e7c023ccd3f1db5c6c0b0c23aad # v4.0.0 id: find-comment with: issue-number: ${{ github.event.pull_request.number }} @@ -559,7 +559,7 @@ jobs: - name: Create or update Slither comment in the PR # We only want to create the comment if the PR is not modified by a bot if: "(github.event_name == 'push' && github.event.pusher.username && ! contains(github.event.pusher.username, '[bot]')) || (github.event_name != 'push' && ! contains(github.actor, '[bot]'))" - uses: peter-evans/create-or-update-comment@71345be0265236311c031f5c7866368bd1eff043 # v4.0.0 + uses: peter-evans/create-or-update-comment@e8674b075228eee787fea43ef493e45ece1004c9 # v5.0.0 with: comment-id: ${{ steps.find-comment.outputs.comment-id }} issue-number: ${{ github.event.pull_request.number }} @@ -570,7 +570,7 @@ jobs: edit-mode: replace - name: Remove temp artifacts - uses: geekyeggo/delete-artifact@24928e75e6e6590170563b8ddae9fac674508aa1 # v5.0 + uses: geekyeggo/delete-artifact@f275313e70c08f6120db482d7a6b98377786765b # v5.1.0 with: name: tmp-* @@ -599,7 +599,7 @@ jobs: steps: - name: Checkout the repo if: ${{ contains(fromJson(needs.changes.outputs.all_changes), matrix.product.name) || needs.changes.outputs.non_src_changes == 'true' }} - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: persist-credentials: false submodules: recursive diff --git a/.github/workflows/solidity-traceability.yml b/.github/workflows/solidity-traceability.yml index afc29cb298..62736c9220 100644 --- a/.github/workflows/solidity-traceability.yml +++ b/.github/workflows/solidity-traceability.yml @@ -22,7 +22,7 @@ jobs: changesets_files: ${{ steps.files-changed.outputs.changesets_files }} steps: - name: Checkout the repo - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: persist-credentials: false @@ -59,7 +59,7 @@ jobs: # Include the pull request ref in the checkout action to prevent merge commit # https://github.com/actions/checkout?tab=readme-ov-file#checkout-pull-request-head-commit-instead-of-merge-commit - name: Checkout the repo - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: persist-credentials: false ref: ${{ github.event.pull_request.head.sha }} @@ -73,7 +73,7 @@ jobs: aws-region: ${{ secrets.AWS_REGION }} - name: Make a comment - uses: thollander/actions-comment-pull-request@fabd468d3a1a0b97feee5f6b9e499eab0dd903f6 # v2.5.0 + uses: thollander/actions-comment-pull-request@24bffb9b452ba05a4f3f77933840a6a841d1b32b # v3.0.1 with: message: | I see you updated files related to `contracts`. Please run `pnpm changeset` in the `contracts` directory to add a changeset. @@ -95,7 +95,7 @@ jobs: uses: ./.github/actions/setup-nodejs - name: Checkout .Github repository - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: persist-credentials: false repository: smartcontractkit/.github @@ -157,7 +157,7 @@ jobs: JIRA_API_TOKEN: ${{ secrets.JIRA_API_TOKEN }} # Commit appended changeset file back to repo - - uses: planetscale/ghcommit-action@13a844326508cdefc72235201bb0446d6d10a85f # v0.1.6 + - uses: planetscale/ghcommit-action@25309d8005ac7c3bcd61d3fe19b69e0fe47dbdde # v0.2.20 with: commit_message: "[Bot] Update changeset file with jira issues" repo: ${{ github.repository }} @@ -176,7 +176,7 @@ jobs: echo "Jira issue key related to solidity review: ${{ env.SOLIDITY_REVIEW_JIRA_ISSUE_KEY }}" - name: Find traceability comment in the PR - uses: peter-evans/find-comment@3eae4d37986fb5a8592848f6a574fdf654e61f9e # v3.0.0 + uses: peter-evans/find-comment@b30e6a3c0ed37e7c023ccd3f1db5c6c0b0c23aad # v4.0.0 if: steps.enforce-solidity-review.outputs.solidity_review_ticket_found == 'true' id: find-comment with: @@ -185,7 +185,7 @@ jobs: body-includes: 'Solidity Review Jira issue' - name: Create or update traceability comment in the PR - uses: peter-evans/create-or-update-comment@71345be0265236311c031f5c7866368bd1eff043 # v4.0.0 + uses: peter-evans/create-or-update-comment@e8674b075228eee787fea43ef493e45ece1004c9 # v5.0.0 if: steps.enforce-solidity-review.outputs.solidity_review_ticket_found == 'true' with: comment-id: ${{ steps.find-comment.outputs.comment-id }} diff --git a/.github/workflows/solidity.yml b/.github/workflows/solidity.yml index 5773422b44..d36640c5d7 100644 --- a/.github/workflows/solidity.yml +++ b/.github/workflows/solidity.yml @@ -18,7 +18,7 @@ jobs: changes: ${{ steps.ch.outputs.changes }} steps: - name: Checkout the repo - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: persist-credentials: false - name: Detect readonly solidity file changes @@ -32,7 +32,7 @@ jobs: changes: ${{ steps.ch.outputs.changes }} steps: - name: Checkout the repo - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: persist-credentials: false - name: Detect changes @@ -55,7 +55,7 @@ jobs: is-release: ${{ steps.release-tag-check-core.outputs.is-release == 'true' || steps.release-tag-check-cre.outputs.is-release == 'true'}} is-pre-release: ${{ steps.release-tag-check-core.outputs.is-pre-release == 'true' || steps.release-tag-check-cre.outputs.is-pre-release == 'true' }} steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 with: persist-credentials: false - name: Check release tag (core) @@ -84,13 +84,13 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout the repo - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: persist-credentials: false path: chainlink - name: Checkout diff-so-fancy - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: persist-credentials: false repository: so-fancy/diff-so-fancy @@ -152,7 +152,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout the repo - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: persist-credentials: false - name: Setup NodeJS @@ -174,7 +174,7 @@ jobs: id-token: write # Required for OIDC steps: - name: Checkout the repo - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: persist-credentials: false @@ -251,7 +251,7 @@ jobs: id-token: write # Required for OIDC steps: - name: Checkout the repo - uses: actions/checkout@v4 + uses: actions/checkout@v6 with: persist-credentials: false diff --git a/.github/workflows/stale.yml b/.github/workflows/stale.yml index 1fdb2cc4e5..f0e90ccaf9 100644 --- a/.github/workflows/stale.yml +++ b/.github/workflows/stale.yml @@ -11,7 +11,7 @@ jobs: contents: write issues: write pull-requests: write - uses: smartcontractkit/.github/.github/workflows/reusable-stale-prs-issues.yml@de0ec7feedae310c287330a2bb2b9e61db035114 # 2025-06-05 + uses: smartcontractkit/.github/.github/workflows/reusable-stale-prs-issues.yml@06c37aea6174dcc0ce72be17bfa00a95547d7aa6 # 2025-06-05 with: days-before-pr-stale: 30 # days days-before-pr-close: 7 # days diff --git a/go.mod b/go.mod index b71c372914..ea8a740558 100644 --- a/go.mod +++ b/go.mod @@ -5,8 +5,8 @@ go 1.25.3 require ( github.com/ethereum/go-ethereum v1.16.8 github.com/fbsobreira/gotron-sdk v0.0.0-20250403083053-2943ce8c759b - github.com/fxamacker/cbor/v2 v2.7.0 - github.com/go-viper/mapstructure/v2 v2.4.0 + github.com/fxamacker/cbor/v2 v2.9.0 + github.com/go-viper/mapstructure/v2 v2.5.0 github.com/google/uuid v1.6.0 github.com/gorilla/websocket v1.5.3 github.com/jackc/pgconn v1.14.3 diff --git a/go.sum b/go.sum index 20d91a8a68..dc4ea09983 100644 --- a/go.sum +++ b/go.sum @@ -169,8 +169,8 @@ github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4 github.com/fsnotify/fsnotify v1.5.4/go.mod h1:OVB6XrOHzAwXMpEM7uPOzcehqUV2UqJxmVXmkdnm1bU= github.com/fsnotify/fsnotify v1.8.0 h1:dAwr6QBTBZIkG8roQaJjGof0pp0EeF+tNV7YBP3F/8M= github.com/fsnotify/fsnotify v1.8.0/go.mod h1:8jBTzvmWwFyi3Pb8djgCCO5IBqzKJ/Jwo8TRcHyHii0= -github.com/fxamacker/cbor/v2 v2.7.0 h1:iM5WgngdRBanHcxugY4JySA0nk1wZorNOpTgCMedv5E= -github.com/fxamacker/cbor/v2 v2.7.0/go.mod h1:pxXPTn3joSm21Gbwsv0w9OSA2y1HFR9qXEeXQVeNoDQ= +github.com/fxamacker/cbor/v2 v2.9.0 h1:NpKPmjDBgUfBms6tr6JZkTHtfFGcMKsw3eGcmD/sapM= +github.com/fxamacker/cbor/v2 v2.9.0/go.mod h1:vM4b+DJCtHn+zz7h3FFp/hDAI9WNWCsZj23V5ytsSxQ= github.com/gabriel-vasile/mimetype v1.4.8 h1:FfZ3gj38NjllZIeJAmMhr+qKL8Wu+nOoI3GqacKw1NM= github.com/gabriel-vasile/mimetype v1.4.8/go.mod h1:ByKUIKGjh1ODkGM1asKUbQZOLGrPjydw3hYPU2YU9t8= github.com/gballet/go-libpcsclite v0.0.0-20191108122812-4678299bea08 h1:f6D9Hr8xV8uYKlyuj8XIruxlh9WjVjdh1gIicAS7ays= @@ -211,8 +211,8 @@ github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0 h1:p104kn46Q8Wd github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0/go.mod h1:fyg7847qk6SyHyPtNmDHnmrv/HOrqktSC+C9fM+CJOE= github.com/go-task/slim-sprig/v3 v3.0.0 h1:sUs3vkvUymDpBKi3qH1YSqBQk9+9D/8M2mN1vB6EwHI= github.com/go-task/slim-sprig/v3 v3.0.0/go.mod h1:W848ghGpv3Qj3dhTPRyJypKRiqCdHZiAzKg9hl15HA8= -github.com/go-viper/mapstructure/v2 v2.4.0 h1:EBsztssimR/CONLSZZ04E8qAkxNYq4Qp9LvH92wZUgs= -github.com/go-viper/mapstructure/v2 v2.4.0/go.mod h1:oJDH3BJKyqBA2TXFhDsKDGDTlndYOZ6rGS0BRZIxGhM= +github.com/go-viper/mapstructure/v2 v2.5.0 h1:vM5IJoUAy3d7zRSVtIwQgBj7BiWtMPfmPEgAXnvj1Ro= +github.com/go-viper/mapstructure/v2 v2.5.0/go.mod h1:oJDH3BJKyqBA2TXFhDsKDGDTlndYOZ6rGS0BRZIxGhM= github.com/goccy/go-json v0.10.5 h1:Fq85nIqj+gXn/S5ahsiTlK3TmC85qgirsdTP/+DeaC4= github.com/goccy/go-json v0.10.5/go.mod h1:oq7eo15ShAhp70Anwd5lgX2pLfOS3QCiwU/PULtXL6M= github.com/godbus/dbus/v5 v5.0.4/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=