fix: update checkout version to dodge deprecation (#77)

2026-05-06 04:14:43 +00:00 · 2026-04-26 18:13:38 +01:00 · 2026-04-26 18:13:38 +01:00 · 98be03c273
commit 98be03c273
parent 1c6784eade
7 changed files with 14 additions and 14 deletions
--- a/.github/workflows/deploy-on-merge.yml
+++ b/.github/workflows/deploy-on-merge.yml
@ -5,7 +5,7 @@ on:
    branches:
      - main
    paths-ignore:
-      - 'terraform/**'
+      - "terraform/**"
 # Requires these repository secrets:
 #   TAILSCALE_CLIENT_ID  — Tailscale OAuth client ID (federated identity)
@ -40,7 +40,7 @@ jobs:
        host: ${{ fromJson(needs.discover.outputs.hosts) }}
      fail-fast: false
    steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
      - name: Set up Tailscale
        uses: tailscale/github-action@v4
--- a/.github/workflows/deploy.yml
+++ b/.github/workflows/deploy.yml
@ -4,15 +4,15 @@ on:
  workflow_dispatch:
    inputs:
      target:
-        description: 'Target host (e.g. helsinki-a, london-b, all)'
+        description: "Target host (e.g. helsinki-a, london-b, all)"
        required: true
        type: string
      playbook:
-        description: 'Ansible playbook to run (e.g. site.yml, update.yml)'
+        description: "Ansible playbook to run (e.g. site.yml, update.yml)"
        required: true
        type: string
      dry_run:
-        description: 'Dry run (--check mode)'
+        description: "Dry run (--check mode)"
        required: false
        type: boolean
        default: true
@ -30,7 +30,7 @@ jobs:
    outputs:
      hosts: ${{ steps.prepare.outputs.hosts }}
    steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
      - name: Build host matrix
        id: prepare
@ -48,7 +48,7 @@ jobs:
    needs: prepare
    name: Deploy ${{ inputs.playbook }} → ${{ matrix.host }}
    runs-on: ubuntu-latest
-    environment: production  # requires manual approval in repo settings
+    environment: production # requires manual approval in repo settings
    permissions:
      id-token: write
    strategy:
--- a/.github/workflows/lint-ansible.yml
+++ b/.github/workflows/lint-ansible.yml
@ -8,7 +8,7 @@ jobs:
    name: ansible-lint
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
      - name: Check for Ansible files
        id: check
--- a/.github/workflows/lint-docker-compose.yml
+++ b/.github/workflows/lint-docker-compose.yml
@ -8,7 +8,7 @@ jobs:
    name: docker compose config
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
      - name: Stub missing env files referenced by Compose
        run: |
--- a/.github/workflows/terraform.yml
+++ b/.github/workflows/terraform.yml
@ -4,8 +4,8 @@ on:
  push:
    branches: [main]
    paths:
-      - 'terraform/**'
+      - "terraform/**"
-      - '.github/workflows/terraform.yml'
+      - ".github/workflows/terraform.yml"
 # Requires these repository secrets:
 #   AGE_SECRET_KEY     — age private key for SOPS decryption
@ -15,7 +15,7 @@ jobs:
    name: Plan
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
      - name: Install OpenTofu
        uses: opentofu/setup-opentofu@v1
--- a/.github/workflows/validate-caddyfile.yml
+++ b/.github/workflows/validate-caddyfile.yml
@ -8,7 +8,7 @@ jobs:
    name: caddy validate
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
      - name: Check for Caddyfile
        id: check
--- a/.github/workflows/validate-terraform.yml
+++ b/.github/workflows/validate-terraform.yml
@ -8,7 +8,7 @@ jobs:
    name: tofu validate
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
      - name: Install OpenTofu
        uses: opentofu/setup-opentofu@v1