From 1578617539b713bc08ec40754b2a8537da54edaa Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 12 Dec 2025 10:07:58 +0000
Subject: [PATCH 1/4] Bump actions/cache from 4 to 5

Bumps [actions/cache](https://github.com/actions/cache) from 4 to 5.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/universal_workflow_light.yaml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/universal_workflow_light.yaml b/.github/workflows/universal_workflow_light.yaml
index 2669a2d8..76cc55fb 100644
--- a/.github/workflows/universal_workflow_light.yaml
+++ b/.github/workflows/universal_workflow_light.yaml
@@ -152,7 +152,7 @@ jobs:
 
       - name: 'Cache testplan on Github'
         if: ${{ inputs.runs_on == '"ubuntu-latest"'}}
-        uses: 'actions/cache/save@v4'
+        uses: 'actions/cache/save@v5'
         with:
           path: |
             ${{ inputs.plan_folder }}/*
@@ -501,7 +501,7 @@ jobs:
 
       - name: 'Cache preparedShop on github'
         if: ${{ steps.iltp.outputs.install_cache_prepared_shop == 'true' && needs.init.outputs.use_private_cache != 'true'}}
-        uses: 'actions/cache/save@v4'
+        uses: 'actions/cache/save@v5'
         with:
           path: |
             ./*
@@ -662,7 +662,7 @@ jobs:
 
       - name: 'Cache current installation on github'
         if: ${{ needs.init.outputs.use_private_cache != 'true' }}
-        uses: 'actions/cache/save@v4'
+        uses: 'actions/cache/save@v5'
         with:
           path: |
             ./*

From e156f5b40cee844b051f9561b025b634f69090cc Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 15 Dec 2025 10:09:23 +0000
Subject: [PATCH 2/4] Bump actions/upload-artifact from 4 to 6

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4 to 6.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v4...v6)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/universal_workflow_light.yaml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/universal_workflow_light.yaml b/.github/workflows/universal_workflow_light.yaml
index 76cc55fb..5c160244 100644
--- a/.github/workflows/universal_workflow_light.yaml
+++ b/.github/workflows/universal_workflow_light.yaml
@@ -610,7 +610,7 @@ jobs:
 
       - name: 'Upload configuration artifacts'
         if: always()
-        uses: 'actions/upload-artifact@v4'
+        uses: 'actions/upload-artifact@v6'
         with:
           name: '${{ steps.iltp.outputs.install_output_artifact_prefix }}-${{steps.itn.outputs.matrix_suffix}}'
           path: |-
@@ -868,7 +868,7 @@ jobs:
 
       - name: 'Upload coverage report'
         if: ${{ always() && steps.rt.outputs.runscript_coverage_prefix != '' }}
-        uses: 'actions/upload-artifact@v4'
+        uses: 'actions/upload-artifact@v6'
         with:
           name: ${{ steps.rt.outputs.runscript_coverage_prefix}}-${{steps.rt.outputs.runscript_suffix }}
           path: source/${{ steps.rt.outputs.runscript_path }}/tests/Reports/*
@@ -1065,7 +1065,7 @@ jobs:
 
       - name: 'Upload coverage report'
         if: ${{ always() && steps.rt.outputs.runslim_coverage_prefix != '' }}
-        uses: 'actions/upload-artifact@v4'
+        uses: 'actions/upload-artifact@v6'
         with:
           name: ${{ steps.rt.outputs.runslim_coverage_prefix}}-${{steps.rt.outputs.runslim_suffix }}
           path: source/${{ steps.rt.outputs.runslim_path }}/tests/Reports/*

From 25db77e0d863eaa2651710bcc0242e801088f662 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 21 Nov 2025 10:09:03 +0000
Subject: [PATCH 3/4] Bump actions/checkout from 5 to 6

Bumps [actions/checkout](https://github.com/actions/checkout) from 5 to 6.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v5...v6)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/dispatch-release.yaml         |  2 +-
 .github/workflows/merge-release.yaml            |  2 +-
 .github/workflows/push-validate_workflows.yaml  |  4 ++--
 .github/workflows/universal_workflow_light.yaml | 10 +++++-----
 4 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/.github/workflows/dispatch-release.yaml b/.github/workflows/dispatch-release.yaml
index 7402ac64..881aadc0 100644
--- a/.github/workflows/dispatch-release.yaml
+++ b/.github/workflows/dispatch-release.yaml
@@ -44,7 +44,7 @@ jobs:
           echo "branch=${BRANCH}" >>"${GITHUB_OUTPUT}"
 
       - name: 'Checkout repo'
-        uses: 'actions/checkout@v5'
+        uses: 'actions/checkout@v6'
         with:
           repository: 'OXID-eSales/github-actions'
           ref: '${{ steps.branch.outputs.branch }}'
diff --git a/.github/workflows/merge-release.yaml b/.github/workflows/merge-release.yaml
index 10da14da..12532eff 100644
--- a/.github/workflows/merge-release.yaml
+++ b/.github/workflows/merge-release.yaml
@@ -35,7 +35,7 @@ jobs:
 
       - name: 'Checkout repo'
         if: ${{ steps.data.outputs.skip != 'true' }}
-        uses: 'actions/checkout@v5'
+        uses: 'actions/checkout@v6'
         with:
           repository: 'OXID-eSales/github-actions'
           ref: 'main'
diff --git a/.github/workflows/push-validate_workflows.yaml b/.github/workflows/push-validate_workflows.yaml
index f1677b33..3c7af608 100644
--- a/.github/workflows/push-validate_workflows.yaml
+++ b/.github/workflows/push-validate_workflows.yaml
@@ -36,7 +36,7 @@ jobs:
     steps:
       - name: 'Checkout'
         id: checkout
-        uses: 'actions/checkout@v5'
+        uses: 'actions/checkout@v6'
 
       - name: 'Lint yaml files'
         id: yamllint
@@ -76,7 +76,7 @@ jobs:
     steps:
       - name: 'Checkout'
         id: checkout
-        uses: 'actions/checkout@v5'
+        uses: 'actions/checkout@v6'
 
       - name: 'Run actionlint'
         id: actionlint
diff --git a/.github/workflows/universal_workflow_light.yaml b/.github/workflows/universal_workflow_light.yaml
index 5c160244..d2a6e0b4 100644
--- a/.github/workflows/universal_workflow_light.yaml
+++ b/.github/workflows/universal_workflow_light.yaml
@@ -72,7 +72,7 @@ jobs:
     runs-on: ${{ fromJSON(inputs.runs_on) }}
     steps:
       - name: 'Checkout testplan defaults'
-        uses: 'actions/checkout@v5'
+        uses: 'actions/checkout@v6'
         with:
           repository: 'OXID-eSales/github-actions'
           ref: '${{ inputs.defaults }}'
@@ -80,7 +80,7 @@ jobs:
           sparse-checkout: '${{ inputs.default_plan_folder }}'
 
       - name: 'Checkout testplans'
-        uses: 'actions/checkout@v5'
+        uses: 'actions/checkout@v6'
         with:
           sparse-checkout: |
             ${{ inputs.plan_folder}}
@@ -1148,7 +1148,7 @@ jobs:
 
       - name: 'Checkout shop'
         if: ${{ env.SONAR_TOKEN != '' }}
-        uses: 'actions/checkout@v5'
+        uses: 'actions/checkout@v6'
         with:
           fetch-depth: 0
           repository: '${{ steps.sonarcloud_testplan.outputs.sonarcloud_git_repository }}'
@@ -1205,7 +1205,7 @@ jobs:
     steps:
       - name: 'Checkout'
         id: checkout
-        uses: 'actions/checkout@v5'
+        uses: 'actions/checkout@v6'
 
       - name: 'Lint yaml files'
         id: yamllint
@@ -1282,7 +1282,7 @@ jobs:
           debug: ${{ inputs.debug }}
 
       - name: 'Checkout the repo for cleanup'
-        uses: 'actions/checkout@v5'
+        uses: 'actions/checkout@v6'
         with:
           path: repo
 

From 94157213d22426eeeab97b8eac651fbfa9f3456f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 10 Dec 2025 10:11:32 +0000
Subject: [PATCH 4/4] Bump peter-evans/create-pull-request from 7 to 8

Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) from 7 to 8.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases)
- [Commits](https://github.com/peter-evans/create-pull-request/compare/v7...v8)

---
updated-dependencies:
- dependency-name: peter-evans/create-pull-request
  dependency-version: '8'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/dispatch-release.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/dispatch-release.yaml b/.github/workflows/dispatch-release.yaml
index 881aadc0..ffc6407f 100644
--- a/.github/workflows/dispatch-release.yaml
+++ b/.github/workflows/dispatch-release.yaml
@@ -102,7 +102,7 @@ jobs:
           private-key: ${{ secrets.ACTIONS_RELEASE_APP_PRIVATE_KEY }}
 
       - name: 'Create branch and Pull Request'
-        uses: 'peter-evans/create-pull-request@v7'
+        uses: 'peter-evans/create-pull-request@v8'
         with:
           token: ${{ steps.generate_token.outputs.token }}
           path: 'github-actions'