Dependency Dashboard

This issue lists Renovate updates and detected dependencies. Read the [Dependency Dashboard](https://docs.renovatebot.com/key-concepts/dashboard/) docs to learn more.<br>[View this repository on the Mend.io Web Portal](https://developer.mend.io/github/SonarSource/ci-github-actions).

## Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

 - [ ] [Update dependency mise to 2026.3.9](../pull/232)
 - [ ] [Update GitHub actions (major)](../pull/111) (`actions/attest-build-provenance`, `actions/cache`, `actions/checkout`, `actions/upload-artifact`, `gradle/actions`, `jdx/mise-action`)
 - [ ] **Click on this checkbox to rebase all open PRs at once**

## Detected Dependencies

<details><summary>github-actions (24)</summary>
<blockquote>

<details><summary>.github/workflows/pr-cleanup.yml (1)</summary>

 - `actions/checkout v5.0.1@93cb6efe18208431cddfb8368fd83d5badbf9bfd` → [Updates: `v6.0.2`]

</details>

<details><summary>.github/workflows/pre-commit.yml (2)</summary>

 - `actions/checkout v5.0.1@93cb6efe18208431cddfb8368fd83d5badbf9bfd` → [Updates: `v6.0.2`]
 - `SonarSource/gh-action_pre-commit 1.2.0@2ddc0c7fdabce0adfaaa4075a17690972ed9961a`

</details>

<details><summary>.github/workflows/PullRequestClosed.yml (2)</summary>

 - `SonarSource/vault-action-wrapper 3.3.0@3d5c87cb535e4a2c7a09adcbcfdefa751854dee3`
 - `sonarsource/gh-action-lt-backlog v2`

</details>

<details><summary>.github/workflows/PullRequestCreated.yml (2)</summary>

 - `SonarSource/vault-action-wrapper 3.3.0@3d5c87cb535e4a2c7a09adcbcfdefa751854dee3`
 - `sonarsource/gh-action-lt-backlog v2`

</details>

<details><summary>.github/workflows/RequestReview.yml (2)</summary>

 - `SonarSource/vault-action-wrapper 3.3.0@3d5c87cb535e4a2c7a09adcbcfdefa751854dee3`
 - `sonarsource/gh-action-lt-backlog v2`

</details>

<details><summary>.github/workflows/slack_notify.yml (1)</summary>

 - `SonarSource/gh-action_slack-notify master`

</details>

<details><summary>.github/workflows/SubmitReview.yml (2)</summary>

 - `SonarSource/vault-action-wrapper 3.3.0@3d5c87cb535e4a2c7a09adcbcfdefa751854dee3`
 - `sonarsource/gh-action-lt-backlog v2`

</details>

<details><summary>.github/workflows/test-build-number.yml (5)</summary>

 - `actions/checkout v5.0.1@93cb6efe18208431cddfb8368fd83d5badbf9bfd` → [Updates: `v6.0.2`]
 - `actions/checkout v5.0.1@93cb6efe18208431cddfb8368fd83d5badbf9bfd` → [Updates: `v6.0.2`]
 - `actions/checkout v5.0.1@93cb6efe18208431cddfb8368fd83d5badbf9bfd` → [Updates: `v6.0.2`]
 - `actions/checkout v5.0.1@93cb6efe18208431cddfb8368fd83d5badbf9bfd` → [Updates: `v6.0.2`]
 - `re-actors/alls-green v1.2.2@05ac9388f0aebcb5727afa17fcccfecd6f8ec5fe`

</details>

<details><summary>.github/workflows/test-pr-cleanup.yml (4)</summary>

 - `actions/checkout v5.0.1@93cb6efe18208431cddfb8368fd83d5badbf9bfd` → [Updates: `v6.0.2`]
 - `actions/cache v4.3.0@0057852bfaa89a56745cba8c7296529d2fc39830` → [Updates: `v5.0.3`]
 - `actions/upload-artifact v4.6.2@ea165f8d65b6e75b540449e92b4886f43607fa02` → [Updates: `v7.0.0`]
 - `actions/checkout v5.0.1@93cb6efe18208431cddfb8368fd83d5badbf9bfd` → [Updates: `v6.0.2`]

</details>

<details><summary>.github/workflows/test-shell-scripts.yml (3)</summary>

 - `actions/checkout v5.0.1@93cb6efe18208431cddfb8368fd83d5badbf9bfd` → [Updates: `v6.0.2`]
 - `jdx/mise-action v3.6.3@5228313ee0372e111a38da051671ca30fc5a96db` → [Updates: `v4.0.0`]
 - `SonarSource/vault-action-wrapper 3.3.0@3d5c87cb535e4a2c7a09adcbcfdefa751854dee3`

</details>

<details><summary>.github/workflows/unified-dogfooding.yml (2)</summary>

 - `actions/checkout v5.0.1@93cb6efe18208431cddfb8368fd83d5badbf9bfd` → [Updates: `v6.0.2`]
 - `SonarSource/unified-dogfooding-actions v1`

</details>

<details><summary>build-gradle/action.yml (3)</summary>

 - `SonarSource/vault-action-wrapper 3.3.0@3d5c87cb535e4a2c7a09adcbcfdefa751854dee3`
 - `actions/upload-artifact v4.6.2@ea165f8d65b6e75b540449e92b4886f43607fa02` → [Updates: `v7.0.0`]
 - `actions/attest-build-provenance v3.2.0@96278af6caaf10aea03fd8d33a09a777ca52d62f` → [Updates: `v4.1.0`]

</details>

<details><summary>build-maven/action.yml (2)</summary>

 - `SonarSource/vault-action-wrapper 3.3.0@3d5c87cb535e4a2c7a09adcbcfdefa751854dee3`
 - `actions/attest-build-provenance v3.2.0@96278af6caaf10aea03fd8d33a09a777ca52d62f` → [Updates: `v4.1.0`]

</details>

<details><summary>build-npm/action.yml (4)</summary>

 - `jdx/mise-action v3.6.3@5228313ee0372e111a38da051671ca30fc5a96db` → [Updates: `v4.0.0`]
 - `SonarSource/vault-action-wrapper 3.3.0@3d5c87cb535e4a2c7a09adcbcfdefa751854dee3`
 - `actions/upload-artifact v4.6.2@ea165f8d65b6e75b540449e92b4886f43607fa02` → [Updates: `v7.0.0`]
 - `actions/attest-build-provenance v3.2.0@96278af6caaf10aea03fd8d33a09a777ca52d62f` → [Updates: `v4.1.0`]

</details>

<details><summary>build-poetry/action.yml (4)</summary>

 - `SonarSource/gh-action_cache v1.2.3@957cb1f6f70956976b834546bf09839080b5bb00`
 - `jdx/mise-action v3.6.3@5228313ee0372e111a38da051671ca30fc5a96db` → [Updates: `v4.0.0`]
 - `SonarSource/vault-action-wrapper 3.3.0@3d5c87cb535e4a2c7a09adcbcfdefa751854dee3`
 - `actions/attest-build-provenance v3.2.0@96278af6caaf10aea03fd8d33a09a777ca52d62f` → [Updates: `v4.1.0`]

</details>

<details><summary>build-yarn/action.yml (4)</summary>

 - `jdx/mise-action v3.6.3@5228313ee0372e111a38da051671ca30fc5a96db` → [Updates: `v4.0.0`]
 - `SonarSource/gh-action_cache v1.2.3@957cb1f6f70956976b834546bf09839080b5bb00`
 - `SonarSource/vault-action-wrapper 3.3.0@3d5c87cb535e4a2c7a09adcbcfdefa751854dee3`
 - `actions/attest-build-provenance v3.2.0@96278af6caaf10aea03fd8d33a09a777ca52d62f` → [Updates: `v4.1.0`]

</details>

<details><summary>cache/action.yml (1)</summary>

 - `SonarSource/gh-action_cache v1.2.3@957cb1f6f70956976b834546bf09839080b5bb00`

</details>

<details><summary>code-signing/action.yml (3)</summary>

 - `SonarSource/gh-action_cache v1.2.3@957cb1f6f70956976b834546bf09839080b5bb00`
 - `SonarSource/vault-action-wrapper 3.3.0@3d5c87cb535e4a2c7a09adcbcfdefa751854dee3`
 - `digicert/ssm-code-signing v1.2.1@1d820463733701cf1484c7eb5d7d24a15ca2c454`

</details>

<details><summary>config-gradle/action.yml (3)</summary>

 - `SonarSource/vault-action-wrapper 3.3.0@3d5c87cb535e4a2c7a09adcbcfdefa751854dee3`
 - `gradle/actions v4.4.4@748248ddd2a24f49513d8f472f81c3a07d4d50e1` → [Updates: `v5.0.2`]
 - `SonarSource/gh-action_cache v1.2.3@957cb1f6f70956976b834546bf09839080b5bb00`

</details>

<details><summary>config-maven/action.yml (2)</summary>

 - `SonarSource/vault-action-wrapper 3.3.0@3d5c87cb535e4a2c7a09adcbcfdefa751854dee3`
 - `SonarSource/gh-action_cache v1.2.3@957cb1f6f70956976b834546bf09839080b5bb00`

</details>

<details><summary>config-npm/action.yml (3)</summary>

 - `jdx/mise-action v3.6.3@5228313ee0372e111a38da051671ca30fc5a96db` → [Updates: `v4.0.0`]
 - `SonarSource/vault-action-wrapper 3.3.0@3d5c87cb535e4a2c7a09adcbcfdefa751854dee3`
 - `SonarSource/gh-action_cache v1.2.3@957cb1f6f70956976b834546bf09839080b5bb00`

</details>

<details><summary>config-pip/action.yml (2)</summary>

 - `SonarSource/vault-action-wrapper 3.3.0@3d5c87cb535e4a2c7a09adcbcfdefa751854dee3`
 - `SonarSource/gh-action_cache v1.2.3@957cb1f6f70956976b834546bf09839080b5bb00`

</details>

<details><summary>get-build-number/action.yml (3)</summary>

 - `actions/cache v4.3.0@0057852bfaa89a56745cba8c7296529d2fc39830` → [Updates: `v5.0.3`]
 - `SonarSource/vault-action-wrapper 3.3.0@3d5c87cb535e4a2c7a09adcbcfdefa751854dee3`
 - `actions/cache v4.3.0@0057852bfaa89a56745cba8c7296529d2fc39830` → [Updates: `v5.0.3`]

</details>

<details><summary>promote/action.yml (2)</summary>

 - `SonarSource/vault-action-wrapper 3.3.0@3d5c87cb535e4a2c7a09adcbcfdefa751854dee3`
 - `jdx/mise-action v3.6.3@5228313ee0372e111a38da051671ca30fc5a96db` → [Updates: `v4.0.0`]

</details>

</blockquote>
</details>

<details><summary>regex (5)</summary>
<blockquote>

<details><summary>.github/workflows/test-shell-scripts.yml (1)</summary>

 - `mise 2026.3.7` → [Updates: `2026.3.9`]

</details>

<details><summary>build-npm/action.yml (1)</summary>

 - `mise 2026.3.7` → [Updates: `2026.3.9`]

</details>

<details><summary>build-poetry/action.yml (1)</summary>

 - `mise 2026.3.7` → [Updates: `2026.3.9`]

</details>

<details><summary>build-yarn/action.yml (1)</summary>

 - `mise 2026.3.7` → [Updates: `2026.3.9`]

</details>

<details><summary>promote/action.yml (1)</summary>

 - `mise 2026.3.7` → [Updates: `2026.3.9`]

</details>

</blockquote>
</details>

---

- [ ] Check this box to trigger a request for Renovate to run again on this repository

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Dependency Dashboard #3

Open

Detected Dependencies

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Dependency Dashboard #3

Description

Open

Detected Dependencies

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions