From cfb36b74ef1b55568f29ffe0e665ffdef2905df5 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 19 Jan 2026 14:14:03 +0000
Subject: [PATCH] Bump the github-actions-deps group across 1 directory with 8
 updates

Bumps the github-actions-deps group with 8 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [ASFHyP3/actions/.github/workflows/reusable-changelog-check.yml](https://github.com/asfhyp3/actions) | `0.20.0` | `0.21.0` |
| [ASFHyP3/actions/.github/workflows/reusable-create-jira-issue.yml](https://github.com/asfhyp3/actions) | `0.20.0` | `0.21.0` |
| [ASFHyP3/actions/.github/workflows/reusable-labeled-pr-check.yml](https://github.com/asfhyp3/actions) | `0.20.0` | `0.21.0` |
| [ASFHyP3/actions/.github/workflows/reusable-release.yml](https://github.com/asfhyp3/actions) | `0.20.0` | `0.21.0` |
| [actions/checkout](https://github.com/actions/checkout) | `5` | `6` |
| [trufflesecurity/trufflehog](https://github.com/trufflesecurity/trufflehog) | `3.90.12` | `3.91.1` |
| [ASFHyP3/actions/.github/workflows/reusable-secrets-analysis.yml](https://github.com/asfhyp3/actions) | `0.20.0` | `0.21.0` |
| [ASFHyP3/actions/.github/workflows/reusable-bump-version.yml](https://github.com/asfhyp3/actions) | `0.20.0` | `0.21.0` |



Updates `ASFHyP3/actions/.github/workflows/reusable-changelog-check.yml` from 0.20.0 to 0.21.0
- [Release notes](https://github.com/asfhyp3/actions/releases)
- [Changelog](https://github.com/ASFHyP3/actions/blob/develop/CHANGELOG.md)
- [Commits](https://github.com/asfhyp3/actions/compare/v0.20.0...v0.21.0)

Updates `ASFHyP3/actions/.github/workflows/reusable-create-jira-issue.yml` from 0.20.0 to 0.21.0
- [Release notes](https://github.com/asfhyp3/actions/releases)
- [Changelog](https://github.com/ASFHyP3/actions/blob/develop/CHANGELOG.md)
- [Commits](https://github.com/asfhyp3/actions/compare/v0.20.0...v0.21.0)

Updates `ASFHyP3/actions/.github/workflows/reusable-labeled-pr-check.yml` from 0.20.0 to 0.21.0
- [Release notes](https://github.com/asfhyp3/actions/releases)
- [Changelog](https://github.com/ASFHyP3/actions/blob/develop/CHANGELOG.md)
- [Commits](https://github.com/asfhyp3/actions/compare/v0.20.0...v0.21.0)

Updates `ASFHyP3/actions/.github/workflows/reusable-release.yml` from 0.20.0 to 0.21.0
- [Release notes](https://github.com/asfhyp3/actions/releases)
- [Changelog](https://github.com/ASFHyP3/actions/blob/develop/CHANGELOG.md)
- [Commits](https://github.com/asfhyp3/actions/compare/v0.20.0...v0.21.0)

Updates `actions/checkout` from 5 to 6
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v5...v6)

Updates `trufflesecurity/trufflehog` from 3.90.12 to 3.91.1
- [Release notes](https://github.com/trufflesecurity/trufflehog/releases)
- [Changelog](https://github.com/trufflesecurity/trufflehog/blob/main/.goreleaser.yml)
- [Commits](https://github.com/trufflesecurity/trufflehog/compare/v3.90.12...v3.91.1)

Updates `ASFHyP3/actions/.github/workflows/reusable-secrets-analysis.yml` from 0.20.0 to 0.21.0
- [Release notes](https://github.com/asfhyp3/actions/releases)
- [Changelog](https://github.com/ASFHyP3/actions/blob/develop/CHANGELOG.md)
- [Commits](https://github.com/asfhyp3/actions/compare/v0.20.0...v0.21.0)

Updates `ASFHyP3/actions/.github/workflows/reusable-bump-version.yml` from 0.20.0 to 0.21.0
- [Release notes](https://github.com/asfhyp3/actions/releases)
- [Changelog](https://github.com/ASFHyP3/actions/blob/develop/CHANGELOG.md)
- [Commits](https://github.com/asfhyp3/actions/compare/v0.20.0...v0.21.0)

---
updated-dependencies:
- dependency-name: ASFHyP3/actions/.github/workflows/reusable-changelog-check.yml
  dependency-version: 0.21.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions-deps
- dependency-name: ASFHyP3/actions/.github/workflows/reusable-create-jira-issue.yml
  dependency-version: 0.21.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions-deps
- dependency-name: ASFHyP3/actions/.github/workflows/reusable-labeled-pr-check.yml
  dependency-version: 0.21.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions-deps
- dependency-name: ASFHyP3/actions/.github/workflows/reusable-release.yml
  dependency-version: 0.21.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions-deps
- dependency-name: actions/checkout
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions-deps
- dependency-name: trufflesecurity/trufflehog
  dependency-version: 3.91.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions-deps
- dependency-name: ASFHyP3/actions/.github/workflows/reusable-secrets-analysis.yml
  dependency-version: 0.21.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions-deps
- dependency-name: ASFHyP3/actions/.github/workflows/reusable-bump-version.yml
  dependency-version: 0.21.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions-deps
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/changelog.yml                 | 2 +-
 .github/workflows/create-jira-issue.yml         | 2 +-
 .github/workflows/labeled-pr.yml                | 2 +-
 .github/workflows/release.yml                   | 2 +-
 .github/workflows/reusable-bump-version.yml     | 2 +-
 .github/workflows/reusable-changelog-check.yml  | 2 +-
 .github/workflows/reusable-docker-ecr.yml       | 2 +-
 .github/workflows/reusable-docker-ghcr.yml      | 2 +-
 .github/workflows/reusable-mypy.yml             | 2 +-
 .github/workflows/reusable-pypi.yml             | 2 +-
 .github/workflows/reusable-pytest.yml           | 2 +-
 .github/workflows/reusable-release.yml          | 2 +-
 .github/workflows/reusable-ruff.yml             | 2 +-
 .github/workflows/reusable-secrets-analysis.yml | 4 ++--
 .github/workflows/reusable-version-info.yml     | 2 +-
 .github/workflows/static-analysis.yml           | 2 +-
 .github/workflows/tag-version.yml               | 2 +-
 .github/workflows/update-examples.yml           | 2 +-
 18 files changed, 19 insertions(+), 19 deletions(-)

diff --git a/.github/workflows/changelog.yml b/.github/workflows/changelog.yml
index 7387fac..5ebe970 100644
--- a/.github/workflows/changelog.yml
+++ b/.github/workflows/changelog.yml
@@ -11,6 +11,6 @@ on:
       - develop
 jobs:
   call-changelog-check-workflow:
-    uses: ASFHyP3/actions/.github/workflows/reusable-changelog-check.yml@v0.20.0
+    uses: ASFHyP3/actions/.github/workflows/reusable-changelog-check.yml@v0.21.0
     permissions:
       contents: read
diff --git a/.github/workflows/create-jira-issue.yml b/.github/workflows/create-jira-issue.yml
index f5e9a4b..46346b1 100644
--- a/.github/workflows/create-jira-issue.yml
+++ b/.github/workflows/create-jira-issue.yml
@@ -6,7 +6,7 @@ on:
 
 jobs:
   call-create-jira-issue-workflow:
-    uses: ASFHyP3/actions/.github/workflows/reusable-create-jira-issue.yml@v0.20.0
+    uses: ASFHyP3/actions/.github/workflows/reusable-create-jira-issue.yml@v0.21.0
     permissions:
       issues: write
     secrets:
diff --git a/.github/workflows/labeled-pr.yml b/.github/workflows/labeled-pr.yml
index 3166446..ca29ada 100644
--- a/.github/workflows/labeled-pr.yml
+++ b/.github/workflows/labeled-pr.yml
@@ -12,6 +12,6 @@ on:
 
 jobs:
   call-labeled-pr-check-workflow:
-    uses: ASFHyP3/actions/.github/workflows/reusable-labeled-pr-check.yml@v0.20.0
+    uses: ASFHyP3/actions/.github/workflows/reusable-labeled-pr-check.yml@v0.21.0
     permissions:
       pull-requests: read
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 04f2b21..38d35bb 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -7,7 +7,7 @@ on:
 
 jobs:
   call-release-workflow:
-    uses: ASFHyP3/actions/.github/workflows/reusable-release.yml@v0.20.0
+    uses: ASFHyP3/actions/.github/workflows/reusable-release.yml@v0.21.0
     permissions: {}
     with:
       release_prefix: Actions
diff --git a/.github/workflows/reusable-bump-version.yml b/.github/workflows/reusable-bump-version.yml
index 6b669c3..473f261 100644
--- a/.github/workflows/reusable-bump-version.yml
+++ b/.github/workflows/reusable-bump-version.yml
@@ -17,7 +17,7 @@ jobs:
   bump-version:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
         with:
           fetch-depth: 0
           token: ${{ secrets.USER_TOKEN }}
diff --git a/.github/workflows/reusable-changelog-check.yml b/.github/workflows/reusable-changelog-check.yml
index ed44966..d1a87b9 100644
--- a/.github/workflows/reusable-changelog-check.yml
+++ b/.github/workflows/reusable-changelog-check.yml
@@ -6,7 +6,7 @@ jobs:
     if: ${{ ! contains(github.event.pull_request.labels.*.name, 'bumpless') }}
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
         with:
           fetch-depth: 0
       - name: Changelog check
diff --git a/.github/workflows/reusable-docker-ecr.yml b/.github/workflows/reusable-docker-ecr.yml
index 6ee7cb0..9cfccff 100644
--- a/.github/workflows/reusable-docker-ecr.yml
+++ b/.github/workflows/reusable-docker-ecr.yml
@@ -29,7 +29,7 @@ jobs:
   dockerize:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/reusable-docker-ghcr.yml b/.github/workflows/reusable-docker-ghcr.yml
index 804372d..137bbd1 100644
--- a/.github/workflows/reusable-docker-ghcr.yml
+++ b/.github/workflows/reusable-docker-ghcr.yml
@@ -24,7 +24,7 @@ jobs:
   dockerize:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/reusable-mypy.yml b/.github/workflows/reusable-mypy.yml
index 5d51a30..53d5e42 100644
--- a/.github/workflows/reusable-mypy.yml
+++ b/.github/workflows/reusable-mypy.yml
@@ -10,7 +10,7 @@ jobs:
   check-with-mypy:
     runs-on: ${{ inputs.runner }}
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
 
       - uses: mamba-org/setup-micromamba@v2
         with:
diff --git a/.github/workflows/reusable-pypi.yml b/.github/workflows/reusable-pypi.yml
index cc3f583..5e50c06 100644
--- a/.github/workflows/reusable-pypi.yml
+++ b/.github/workflows/reusable-pypi.yml
@@ -12,7 +12,7 @@ jobs:
   distribute-to-pypi:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/reusable-pytest.yml b/.github/workflows/reusable-pytest.yml
index c01f0c3..b2beada 100644
--- a/.github/workflows/reusable-pytest.yml
+++ b/.github/workflows/reusable-pytest.yml
@@ -26,7 +26,7 @@ jobs:
         python_version: ${{ fromJson(inputs.python_versions) }}
 
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
 
       - uses: mamba-org/setup-micromamba@v2
         with:
diff --git a/.github/workflows/reusable-release.yml b/.github/workflows/reusable-release.yml
index 9a61ef0..b0481d2 100644
--- a/.github/workflows/reusable-release.yml
+++ b/.github/workflows/reusable-release.yml
@@ -24,7 +24,7 @@ jobs:
   write-release:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
         with:
           fetch-depth: 0
           token: ${{ secrets.USER_TOKEN }}
diff --git a/.github/workflows/reusable-ruff.yml b/.github/workflows/reusable-ruff.yml
index b5b341f..15bc0bc 100644
--- a/.github/workflows/reusable-ruff.yml
+++ b/.github/workflows/reusable-ruff.yml
@@ -10,7 +10,7 @@ jobs:
   check-with-ruff:
     runs-on: ${{ inputs.runner }}
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
 
       - uses: mamba-org/setup-micromamba@v2
         with:
diff --git a/.github/workflows/reusable-secrets-analysis.yml b/.github/workflows/reusable-secrets-analysis.yml
index a73a12d..e26cc2e 100644
--- a/.github/workflows/reusable-secrets-analysis.yml
+++ b/.github/workflows/reusable-secrets-analysis.yml
@@ -5,12 +5,12 @@ jobs:
   trufflehog:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
         with:
           fetch-depth: 0
 
       - name: Secret Scanning
-        uses: trufflesecurity/trufflehog@v3.90.12
+        uses: trufflesecurity/trufflehog@v3.92.5
         with:
           base: main
           extra_args: --only-verified
diff --git a/.github/workflows/reusable-version-info.yml b/.github/workflows/reusable-version-info.yml
index 94d23ad..bbd11f3 100644
--- a/.github/workflows/reusable-version-info.yml
+++ b/.github/workflows/reusable-version-info.yml
@@ -19,7 +19,7 @@ jobs:
       version: ${{ steps.set_outputs.outputs.version }}
       version_tag: ${{ steps.set_outputs.outputs.version_tag }}
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/static-analysis.yml b/.github/workflows/static-analysis.yml
index 18f485c..a83a1fc 100644
--- a/.github/workflows/static-analysis.yml
+++ b/.github/workflows/static-analysis.yml
@@ -4,6 +4,6 @@ on: push
 
 jobs:
   call-secrets-analysis-workflow:
-    uses: ASFHyP3/actions/.github/workflows/reusable-secrets-analysis.yml@v0.20.0
+    uses: ASFHyP3/actions/.github/workflows/reusable-secrets-analysis.yml@v0.21.0
     permissions:
       contents: read
diff --git a/.github/workflows/tag-version.yml b/.github/workflows/tag-version.yml
index fd25314..f2fdff3 100644
--- a/.github/workflows/tag-version.yml
+++ b/.github/workflows/tag-version.yml
@@ -7,7 +7,7 @@ on:
 
 jobs:
   call-bump-version-workflow:
-    uses: ASFHyP3/actions/.github/workflows/reusable-bump-version.yml@v0.20.0
+    uses: ASFHyP3/actions/.github/workflows/reusable-bump-version.yml@v0.21.0
     permissions: {}
     secrets:
       USER_TOKEN: ${{ secrets.TOOLS_BOT_PAK }}
diff --git a/.github/workflows/update-examples.yml b/.github/workflows/update-examples.yml
index 95e53f2..3c8ae96 100644
--- a/.github/workflows/update-examples.yml
+++ b/.github/workflows/update-examples.yml
@@ -15,7 +15,7 @@ jobs:
   update-actions-examples:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
         with:
           token: ${{ secrets.TOOLS_BOT_PAK }}