build(deps): bump the all group across 1 directory with 10 updates

.github/workflows/audit.yml

@@ -24,7 +24,7 @@ jobs:
   security_audit:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
 
       - uses: rustsec/audit-check@v2
         with:
@@ -41,10 +41,10 @@ jobs:
       pull-requests: write
 
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
         if: github.event_name != 'pull_request'
 
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
         if: github.event_name == 'pull_request'
         with:
           # By default github will checkout a ref of the HEAD merged into the
@@ -60,7 +60,7 @@ jobs:
 
       - name: Create Pull Request
         id: create-pull-request
-        uses: peter-evans/create-pull-request@v7
+        uses: peter-evans/create-pull-request@v8
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
           branch: bot/cargo-audit
@@ -71,7 +71,7 @@ jobs:
 
       - name: Comment about audit fix PR on original PR
         if: github.event_name == 'pull_request' && steps.create-pull-request.outputs.pull-request-number
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           github-token: ${{secrets.GITHUB_TOKEN}}
           script: |

.github/workflows/auto-merge-dependabot.yml

@@ -13,7 +13,7 @@ jobs:
     if: ${{ github.actor == 'dependabot[bot]' && github.event_name == 'pull_request'}}
     steps:
       - name: Dependabot metadata
-        uses: dependabot/fetch-metadata@v2.3.0
+        uses: dependabot/fetch-metadata@v2.5.0
         id: metadata
         with:
           github-token: '${{ secrets.GITHUB_TOKEN }}'

.github/workflows/backport.yml

@@ -13,6 +13,6 @@ jobs:
     # Don't run on closed unmerged pull requests
     if: github.event.pull_request.merged
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - name: Create backport pull requests
-        uses: korthout/backport-action@v3
+        uses: korthout/backport-action@v4

.github/workflows/benchmark-build.yaml

@@ -20,7 +20,7 @@ jobs:
       - uses: taiki-e/install-action@just
 
       - name: Checkout Repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
 
       - name: Enable Rust Caching
         uses: Swatinem/rust-cache@v2
@@ -39,7 +39,7 @@ jobs:
           cargo build --locked --release --features benchmarking,testing,embedded-db --bin espresso-dev-node
 
       - name: Upload artifacts
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v6
         with:
           name: x86_64-unknown-linux-gnu-services-bench
           path: |
@@ -66,7 +66,7 @@ jobs:
     runs-on: buildjet-16vcpu-ubuntu-2204-arm
     steps:
       - name: Checkout Repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
 
       - name: Enable Rust Caching
         uses: Swatinem/rust-cache@v2
@@ -83,7 +83,7 @@ jobs:
           cargo build --locked --release --features benchmarking,testing,embedded-db --bin espresso-dev-node
 
       - name: Upload artifacts
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v6
         with:
           name: aarch64-unknown-linux-gnu-services-bench
           path: |
@@ -125,16 +125,16 @@ jobs:
       bridge-tag: ${{ steps.bridge.outputs.tags }}
     steps:
       - name: Checkout Repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
 
       - name: Download executables AMD
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@v7
         with:
           name: x86_64-unknown-linux-gnu-services-bench
           path: target/amd64/release
 
       - name: Download executables ARM
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@v7
         with:
           name: aarch64-unknown-linux-gnu-services-bench
           path: target/arm64/release
@@ -378,7 +378,7 @@ jobs:
       - uses: taiki-e/install-action@just
 
       - name: Checkout Repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
 
       - name: Pull docker images
         run: |

.github/workflows/build-crypto-helper.yml

@@ -32,7 +32,7 @@ jobs:
 
     steps:
       - name: Checkout Repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
 
       - name: Install Rust
         uses: dtolnay/rust-toolchain@stable
@@ -72,14 +72,14 @@ jobs:
           fi
 
       - name: Upload Artifact
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v6
         with:
           name: libespresso_crypto_helper-${{ matrix.target }}.${{ contains(matrix.target, 'apple-darwin') && 'dylib' || 'so' }}
           path: |
             target/lib/libespresso_crypto_helper-${{ matrix.target }}.${{ contains(matrix.target, 'apple-darwin') && 'dylib' || 'so' }}
 
       - name: Upload sha256 files
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v6
         with:
           name: libespresso_crypto_helper-${{ matrix.target }}.${{ contains(matrix.target, 'apple-darwin') && 'dylib' || 'so' }}.sha256
           path: |
@@ -92,10 +92,10 @@ jobs:
 
     steps:
       - name: Checkout repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
 
       - name: Download all Artifacts
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@v7
         with:
           path: target/lib
 

.github/workflows/build-without-lockfile.yml

@@ -30,7 +30,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout Repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
 
       # NOTE: no rust cache, this isn't a time critical job
 
@@ -40,7 +40,7 @@ jobs:
           cargo check --all-targets
 
       - name: Comment on PR
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         if: failure() && github.event_name == 'pull_request'
         with:
           github-token: ${{secrets.GITHUB_TOKEN}}

.github/workflows/build.yml

@@ -64,7 +64,7 @@ jobs:
             save-cache: true
 
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - uses: rui314/setup-mold@v1
 
       - name: Enable Rust Caching
@@ -95,7 +95,7 @@ jobs:
           done
 
       - name: Upload Artifacts
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v6
         with:
           name: amd-${{ matrix.binary }}
           path: |
@@ -127,7 +127,7 @@ jobs:
             save-cache: true
 
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - uses: rui314/setup-mold@v1
 
       - name: Enable Rust Caching
@@ -156,7 +156,7 @@ jobs:
           done
 
       - name: Upload Artifacts
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v6
         with:
           name: arm-${{ matrix.binary }}
           path: |
@@ -186,10 +186,10 @@ jobs:
 
     steps:
       - name: Checkout Repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
 
       - name: Download executables AMD
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@v7
         with:
           pattern: amd-*
           path: target/amd64/release
@@ -230,15 +230,15 @@ jobs:
 
       - name: Upload docker image artifact (on PRs)
         if: github.event_name == 'pull_request'
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v6
         with:
           name: ${{ matrix.service }}-docker-image
           path: ${{ runner.temp }}/${{ matrix.service }}.tar
           if-no-files-found: error
 
       - name: Build and push docker (non-PR)
         if: github.event_name != 'pull_request'
-        uses: docker/build-push-action@v5
+        uses: docker/build-push-action@v6
         id: build
         with:
           context: .
@@ -261,7 +261,7 @@ jobs:
 
       - name: Upload digest
         if: github.event_name != 'pull_request'
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v6
         with:
           name: "digests-${{ matrix.service }}-amd64"
           path: "${{ runner.temp }}/digests/*"
@@ -294,10 +294,10 @@ jobs:
 
     steps:
       - name: Checkout Repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
 
       - name: Download executables ARM
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@v7
         with:
           pattern: arm-*
           path: target/arm64/release
@@ -342,7 +342,7 @@ jobs:
           ls -lah "${digest_dir}"
 
       - name: Upload digest
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v6
         with:
           name: "digests-${{ matrix.service }}-arm64"
           path: "${{ runner.temp }}/digests/*"
@@ -388,7 +388,7 @@ jobs:
           password: ${{ secrets.GITHUB_TOKEN  }}
 
       - name: Download digests
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@v7
         with:
           pattern: "digests-${{ matrix.service }}-*"
           path: "${{ runner.temp }}/digests"
@@ -424,11 +424,11 @@ jobs:
     runs-on: ubuntu-latest
     needs: [build-dockers-amd]
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - uses: taiki-e/install-action@just
 
       - name: Download artifacts
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@v7
         with:
           path: ${{ runner.temp }}/docker-images
           pattern: "*-docker-image"
@@ -465,7 +465,7 @@ jobs:
     runs-on: ubuntu-latest
     needs: [build-dockers-amd, create-multiplatform-docker-image]
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - uses: taiki-e/install-action@just
 
       - name: Set docker image tag for compose

.github/workflows/cargo-features.yml

@@ -30,7 +30,7 @@ jobs:
           - just check-features-ci
           - just check-features-ci --tests
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - uses: ./.github/actions/free-disk-space
       - uses: taiki-e/install-action@cargo-hack
       - uses: taiki-e/install-action@just

.github/workflows/contracts.yml

@@ -26,7 +26,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout Repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
         with:
           submodules: recursive
 
@@ -92,7 +92,7 @@ jobs:
             nix-env: ""
             with-diff-test: false
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
         with:
           submodules: recursive
       - uses: taiki-e/install-action@just

.github/workflows/coverage.yml

@@ -30,7 +30,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout Repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
 
       - uses: dtolnay/rust-toolchain@nightly
 

.github/workflows/docs.yml

@@ -22,15 +22,15 @@ jobs:
     runs-on: ubuntu-24.04
     steps:
       - name: Checkout Repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
 
       - uses: taiki-e/install-action@just
 
       - name: Build Rust Docs
         run: just doc
 
       - name: Upload Rust Docs
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v6
         with:
           name: rust-docs
           path: target/doc
@@ -40,7 +40,7 @@ jobs:
     runs-on: ubuntu-24.04
     steps:
       - name: Checkout Repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
         with:
           submodules: recursive
 
@@ -54,7 +54,7 @@ jobs:
         run: just doc-contracts
 
       - name: Upload Contract Docs
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v6
         with:
           name: contract-docs
           path: docs/book
@@ -65,13 +65,13 @@ jobs:
     runs-on: ubuntu-24.04
     steps:
       - name: Download Rust Docs
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@v7
         with:
           name: rust-docs
           path: public
 
       - name: Download Contract Docs
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@v7
         with:
           name: contract-docs
           path: public/contracts