upgrade checkout@4 and change dependabot precheck

public-convenience-ltd · Sep 20, 2023 · 488ce5e · 488ce5e
1 parent d5df081
commit 488ce5e
Show file tree

Hide file tree

Showing 7 changed files with 10 additions and 10 deletions.
diff --git a/.github/workflows/chromatic.yml b/.github/workflows/chromatic.yml
@@ -16,7 +16,7 @@ jobs:
     # if: contains(github.event.pull_request.labels.*.name, 'safe to test')
     # Job steps
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
         with:
           fetch-depth: 0
       # enables use to use the cache in actions/setup-node

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -13,7 +13,7 @@ jobs:
     runs-on: ubuntu-latest
 
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
       # enables use to use the cache in actions/setup-node
       - uses: pnpm/action-setup@v2.4.0
       - uses: actions/setup-node@v3

diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
@@ -30,7 +30,7 @@ jobs:
 
     steps:
       - name: Checkout repository
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
         with:
           # We must fetch at least the immediate parents so that if this is
           # a pull request then we can checkout the head.

diff --git a/.github/workflows/cypress-e2e-chrome.yml b/.github/workflows/cypress-e2e-chrome.yml
@@ -31,7 +31,7 @@ jobs:
     runs-on: ubuntu-20.04
     # Don't run the e2e tests for dependabot prs or if the PR is not labeled as 'safe to test'.
     if: |
-      ${{ github.actor != 'dependabot[bot]' &&
+      ${{ github.event.pull_request.user.login == 'dependabot[bot]' &&
       needs.label_check.outputs.authorized == 'true' }}
 
     # Only run the e2e tests if a maintainer has labeled the PR as 'safe to test'.
@@ -48,7 +48,7 @@ jobs:
         containers: [1, 2, 3, 4, 5]
     steps:
       - name: Checkout
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
       # enables use to use the cache in actions/setup-node
       - uses: pnpm/action-setup@v2.4.0
       - uses: actions/setup-node@v3

diff --git a/.github/workflows/cypress-e2e-firefox.yml b/.github/workflows/cypress-e2e-firefox.yml
@@ -31,7 +31,7 @@ jobs:
     runs-on: ubuntu-20.04
     # Don't run the e2e tests for dependabot prs or if the PR is not labeled as 'safe to test'.
     if: |
-      ${{ github.actor != 'dependabot[bot]' &&
+      ${{ github.event.pull_request.user.login == 'dependabot[bot]' &&
       needs.label_check.outputs.authorized == 'true' }}
 
       # Only run the e2e tests if a maintainer has labeled the PR as 'safe to test'.
@@ -48,9 +48,9 @@ jobs:
         containers: [1, 2, 3, 4, 5]
     steps:
       - name: Checkout
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
       # enables use to use the cache in actions/setup-node
-      - uses: pnpm/action-setup@v2.4.0
+      - uses: pnpm/action-setup@v2.2.2
       - uses: actions/setup-node@v3
         with:
           node-version-file: '.nvmrc'

diff --git a/.github/workflows/supabase-migrations-prod.yml b/.github/workflows/supabase-migrations-prod.yml
@@ -16,7 +16,7 @@ jobs:
       PRODUCTION_PROJECT_ID: bdidtbneqztkyuqztmay
 
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
 
       - uses: supabase/setup-cli@v1
         with:

diff --git a/.github/workflows/supabase-migrations-stage.yml b/.github/workflows/supabase-migrations-stage.yml
@@ -16,7 +16,7 @@ jobs:
       STAGE_PROJECT_ID: qyrgvtalhopncikdzhhp
 
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
 
       - uses: supabase/setup-cli@v1
         with: