Merge pull request #7554 from nextcloud/dependabot/github_actions/dot-github/workflows/astral-sh/setup-uv-7.2.1

build(deps): bump astral-sh/setup-uv from 7.2.0 to 7.2.1 in /.github/workflows
build(deps): bump astral-sh/setup-uv in /.github/workflows
2026-02-11 08:10:13 +00:00 · 2026-02-06 13:24:29 +01:00 · 2026-02-06 12:07:10 +00:00 · 2026-02-04 23:11:04 +01:00 · 2026-02-02 14:54:09 +01:00 · 2026-02-02 13:26:38 +00:00
3 changed files with 2 additions and 5 deletions
--- a/.github/pull_request_template.md
+++ b/.github/pull_request_template.md
@ -3,6 +3,3 @@
  -
  - Before sending a pull request that fixes a security issue please report it via our HackerOne page (https://hackerone.com/nextcloud) following our security policy (https://nextcloud.com/security/). This allows us to coordinate the fix and release without potentially exposing all Nextcloud servers and users in the meantime.
 -->
 * Resolves: # <!-- related github issue -->
 * [Sign-off message](https://github.com/src-d/guide/blob/master/developer-community/fix-DCO.md) is added to all commits
--- a/.github/workflows/fail-on-prerelease.yml
+++ b/.github/workflows/fail-on-prerelease.yml
@ -11,7 +11,7 @@ jobs:
    runs-on: ubuntu-latest
    steps:
      - name: "Check latest published release isn't a prerelease"
-        uses: actions/github-script@d7906e4ad0b1822421a7e6a35d5ca353c962f410 # v6
+        uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v6
        with:
          script: |
            const tags = await github.rest.repos.listTags({
--- a/.github/workflows/lint-yaml.yml
+++ b/.github/workflows/lint-yaml.yml
@ -36,7 +36,7 @@ jobs:
            line-length: warning
      - name: Install the latest version of uv
-        uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # v7.2.0
+        uses: astral-sh/setup-uv@803947b9bd8e9f986429fa0c5a41c367cd732b41 # v7.2.1
      - name: Check GitHub actions
        run: uvx zizmor --min-severity medium .github/workflows/*.yml
Author	SHA1	Message	Date
Simon L.	a803d1c098	Merge pull request #7554 from nextcloud/dependabot/github_actions/dot-github/workflows/astral-sh/setup-uv-7.2.1 Some checks failed Codespell / Check spelling (push) Has been cancelled Details build(deps): bump astral-sh/setup-uv from 7.2.0 to 7.2.1 in /.github/workflows	2026-02-06 13:24:29 +01:00
dependabot[bot]	2df9b8af50	build(deps): bump astral-sh/setup-uv in /.github/workflows Bumps [astral-sh/setup-uv](https://github.com/astral-sh/setup-uv) from 7.2.0 to 7.2.1. - [Release notes](https://github.com/astral-sh/setup-uv/releases) - [Commits](`61cb8a9741...803947b9bd`) --- updated-dependencies: - dependency-name: astral-sh/setup-uv dependency-version: 7.2.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2026-02-06 12:07:10 +00:00
Simon L.	a16c7e28c2	Clean up pull request template Some checks failed Codespell / Check spelling (push) Has been cancelled Details Removed unnecessary lines from the pull request template. Signed-off-by: Simon L. <szaimen@e.mail.de>	2026-02-04 23:11:04 +01:00
Simon L.	9c0334d3f0	Merge pull request #7538 from nextcloud/dependabot/github_actions/dot-github/workflows/actions/github-script-8.0.0 Some checks failed Codespell / Check spelling (push) Has been cancelled Details build(deps): bump actions/github-script from 6.4.1 to 8.0.0 in /.github/workflows	2026-02-02 14:54:09 +01:00
dependabot[bot]	e95f5cc590	build(deps): bump actions/github-script in /.github/workflows Bumps [actions/github-script](https://github.com/actions/github-script) from 6.4.1 to 8.0.0. - [Release notes](https://github.com/actions/github-script/releases) - [Commits](`d7906e4ad0...ed597411d8`) --- updated-dependencies: - dependency-name: actions/github-script dependency-version: 8.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2026-02-02 13:26:38 +00:00