(shiro) branch main updated: chore(deps): bump the github-dependencies group with 3 updates (#2577)

Fri, 27 Feb 2026 10:42:59 -0800 

This is an automated email from the ASF dual-hosted git repository.

lprimak pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/shiro.git


The following commit(s) were added to refs/heads/main by this push:
     new 925441bb2 chore(deps): bump the github-dependencies group with 3 
updates (#2577)
925441bb2 is described below

commit 925441bb2d4449c7365347b8a097f2969d9f192c
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Fri Feb 27 12:42:49 2026 -0600

    chore(deps): bump the github-dependencies group with 3 updates (#2577)
    
    Bumps the github-dependencies group with 3 updates: 
[github/codeql-action](https://github.com/github/codeql-action), 
[actions/dependency-review-action](https://github.com/actions/dependency-review-action)
 and [actions/stale](https://github.com/actions/stale).
    
    
    Updates `github/codeql-action` from 4.32.3 to 4.32.4
    - [Release notes](https://github.com/github/codeql-action/releases)
    - 
[Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
    - 
[Commits](https://github.com/github/codeql-action/compare/9e907b5e64f6b83e7804b09294d44122997950d6...89a39a4e59826350b863aa6b6252a07ad50cf83e)
    
    Updates `actions/dependency-review-action` from 4.8.2 to 4.8.3
    - [Release 
notes](https://github.com/actions/dependency-review-action/releases)
    - 
[Commits](https://github.com/actions/dependency-review-action/compare/3c4e3dcb1aa7874d2c16be7d79418e9b7efd6261...05fe4576374b728f0c523d6a13d64c25081e0803)
    
    Updates `actions/stale` from 10.1.1 to 10.2.0
    - [Release notes](https://github.com/actions/stale/releases)
    - [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md)
    - 
[Commits](https://github.com/actions/stale/compare/997185467fa4f803885201cee163a9f38240193d...b5d41d4e1d5dceea10e7104786b73624c18a190f)
    
    ---
    updated-dependencies:
    - dependency-name: github/codeql-action
      dependency-version: 4.32.4
      dependency-type: direct:production
      update-type: version-update:semver-patch
      dependency-group: github-dependencies
    - dependency-name: actions/dependency-review-action
      dependency-version: 4.8.3
      dependency-type: direct:production
      update-type: version-update:semver-patch
      dependency-group: github-dependencies
    - dependency-name: actions/stale
      dependency-version: 10.2.0
      dependency-type: direct:production
      update-type: version-update:semver-minor
      dependency-group: github-dependencies
    ...
    
    Signed-off-by: dependabot[bot] <[email protected]>
    Co-authored-by: dependabot[bot] 
<49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/codeql.yml            | 4 ++--
 .github/workflows/dependency-review.yml | 2 +-
 .github/workflows/scorecards.yml        | 2 +-
 .github/workflows/stale.yml             | 2 +-
 4 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 438f96e82..191720564 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -73,7 +73,7 @@ jobs:
 
       # Initializes the CodeQL tools for scanning.
       - name: Initialize CodeQL
-        uses: 
github/codeql-action/init@9e907b5e64f6b83e7804b09294d44122997950d6 # v4.32.3
+        uses: 
github/codeql-action/init@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4
         with:
           languages: ${{ matrix.language }}
           # If you wish to specify custom queries, you can do so here or in a 
config file.
@@ -99,6 +99,6 @@ jobs:
       #     ./location_of_script_within_repo/buildscript.sh
 
       - name: Perform CodeQL Analysis
-        uses: 
github/codeql-action/analyze@9e907b5e64f6b83e7804b09294d44122997950d6 # v4.32.3
+        uses: 
github/codeql-action/analyze@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4
         with:
           category: "/language:${{matrix.language}}"
diff --git a/.github/workflows/dependency-review.yml 
b/.github/workflows/dependency-review.yml
index 9e6f876ce..bad3624ec 100644
--- a/.github/workflows/dependency-review.yml
+++ b/.github/workflows/dependency-review.yml
@@ -30,4 +30,4 @@ jobs:
         with:
           persist-credentials: false
       - name: 'Dependency Review'
-        uses: 
actions/dependency-review-action@3c4e3dcb1aa7874d2c16be7d79418e9b7efd6261 # 
v4.8.2
+        uses: 
actions/dependency-review-action@05fe4576374b728f0c523d6a13d64c25081e0803 # 
v4.8.3
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 23dacef1d..1f9cd1e7d 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -74,6 +74,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: 
github/codeql-action/upload-sarif@9e907b5e64f6b83e7804b09294d44122997950d6 # 
tag=v2
+        uses: 
github/codeql-action/upload-sarif@89a39a4e59826350b863aa6b6252a07ad50cf83e # 
tag=v2
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/stale.yml b/.github/workflows/stale.yml
index b5dcbf560..02b3884b1 100644
--- a/.github/workflows/stale.yml
+++ b/.github/workflows/stale.yml
@@ -34,7 +34,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Close Stale Issues
-        uses: actions/stale@997185467fa4f803885201cee163a9f38240193d # v10.1.1
+        uses: actions/stale@b5d41d4e1d5dceea10e7104786b73624c18a190f # v10.2.0
         with:
           # default is 60
           days-before-stale: 90

Reply via email to