From 795268176484b8f727a8c1e959dd793f35070118 Mon Sep 17 00:00:00 2001
From: axi92 <axi92@users.noreply.github.com>
Date: Tue, 5 May 2026 16:26:04 +0200
Subject: [PATCH] feat: update all available actions to the newest version

---
 .github/allowed-actions.json                   | 8 ++++----
 .github/workflows/validate-allowed-actions.yml | 2 +-
 .github/workflows/weekly-trivy-scan.yml        | 8 ++++----
 3 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/.github/allowed-actions.json b/.github/allowed-actions.json
index 8653cb5..e02cef5 100644
--- a/.github/allowed-actions.json
+++ b/.github/allowed-actions.json
@@ -1,17 +1,17 @@
 {
   "include": [
     { "repo": "amannn/action-semantic-pull-request", "sha": "48f256284bd46cdaab1048c3721360e808335d50", "version": "v6.1.1" },
-    { "repo": "aquasecurity/trivy-action", "sha": "57a97c7e7821a5776cebc9bb87c984fa69cba8f1", "version": "v0.35.0" },
+    { "repo": "aquasecurity/trivy-action", "sha": "ed142fd0673e97e23eac54620cfb913e5ce36c25", "version": "v0.36.0" },
     { "repo": "axi92/flutter-action", "sha": "72633a794ba0b23276fa4fc465a6cacb758a90c5", "version": "" },
     { "repo": "anthropics/claude-code-action", "sha": "c3d45e8e941e1b2ad7b278c57482d9c5bf1f35b3", "version": "v1" },
-    { "repo": "docker/build-push-action", "sha": "d08e5c354a6adb9ed34480a06d141179aa583294", "version": "v7.0.0" },
+    { "repo": "docker/build-push-action", "sha": "bcafcacb16a39f128d818304e6c9c0c18556b85f", "version": "v7.1.0" },
     { "repo": "docker/login-action", "sha": "4907a6ddec9925e35a0a9e82d7399ccc52663121", "version": "v4.1.0" },
     { "repo": "docker/metadata-action", "sha": "030e881283bb7a6894de51c315a6bfe6a94e05cf", "version": "v6.0.0" },
     { "repo": "docker/setup-buildx-action", "sha": "4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd", "version": "v4.0.0 " },
     { "repo": "evva-sfw/workflows", "sha": "bc323490730128e914068868fe76a82726c26de6", "version": "" },
-    { "repo": "iarekylew00t/verified-bot-commit", "sha": "4aeee0954ea68e4e91e5fd326e9a0827ebc5b19a", "version": "v2.2.2" },
+    { "repo": "iarekylew00t/verified-bot-commit", "sha": "126a6a11889ab05bcff72ec2403c326cd249b84c", "version": "v2.3.0" },
     { "repo": "irgaly/xcode-cache", "sha": "4141f139f00e335c6e1031fb93e667181f86146f", "version": "v1.9.2" },
     { "repo": "sigstore/cosign-installer", "sha": "cad07c2e89fa2edd6e2d7bab4c1aa38e53f76003", "version": "v4.1.1" },
-    { "repo": "SwiftyLab/setup-swift", "sha": "86a5d3b9cffda409de636eb5f63f3f5696fdbe36", "version": "v1.13.0" }
+    { "repo": "SwiftyLab/setup-swift", "sha": "38f54a76b70d989321de9dc7c840618c08cf56e9", "version": "v1.14.0" }
   ]
 }
diff --git a/.github/workflows/validate-allowed-actions.yml b/.github/workflows/validate-allowed-actions.yml
index 3d5e327..33686d4 100644
--- a/.github/workflows/validate-allowed-actions.yml
+++ b/.github/workflows/validate-allowed-actions.yml
@@ -15,7 +15,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout repository
-        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
 
       - name: Validate JSON syntax
         run: |
diff --git a/.github/workflows/weekly-trivy-scan.yml b/.github/workflows/weekly-trivy-scan.yml
index 0a3a8c8..e8b5f9a 100644
--- a/.github/workflows/weekly-trivy-scan.yml
+++ b/.github/workflows/weekly-trivy-scan.yml
@@ -18,7 +18,7 @@ jobs:
     outputs:
       matrix: ${{ steps.set-matrix.outputs.matrix }}
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
 
       - name: Read repo/sha matrix from JSON
         id: set-matrix
@@ -70,7 +70,7 @@ jobs:
           git checkout ${{ matrix.sha }}
 
       - name: Run Trivy filesystem scan (SARIF)
-        uses: aquasecurity/trivy-action@76071ef0d7ec797419534a183b498b4d6366cf37 # v0.31.0
+        uses: aquasecurity/trivy-action@ed142fd0673e97e23eac54620cfb913e5ce36c25 # v0.36.0
         with:
           scan-type: fs
           scan-ref: ./repo
@@ -78,7 +78,7 @@ jobs:
           output: trivy-report.sarif
 
       - name: Upload Trivy SARIF to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@86b04fb0e47484f7282357688f21d5d0e32175fe
+        uses: github/codeql-action/upload-sarif@7851e55dc3be31ec4bcc3ef98453de2cb306e698
         with:
           sarif_file: trivy-report.sarif
           category: ${{ matrix.repo }}-${{ matrix.sha }}
@@ -111,7 +111,7 @@ jobs:
         run: echo "repo_safe=${{ matrix.repo }}" | sed 's/\//-/g' >> $GITHUB_OUTPUT
 
       - name: Upload full Trivy text report
-        uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
+        uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
         with:
           name: trivy-report-${{ steps.sanitize.outputs.repo_safe }}-${{ matrix.sha }}
           path: trivy-report.txt