From 4b7df04178bd3a70dc17639023af61a975fd77f7 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 1 Dec 2025 01:06:45 +0000
Subject: [PATCH] Bump the github-actions group across 1 directory with 4
 updates

Bumps the github-actions group with 4 updates in the / directory: [actions/checkout](https://github.com/actions/checkout), [github/codeql-action](https://github.com/github/codeql-action), [Azure/setup-azd](https://github.com/azure/setup-azd) and [actions/setup-python](https://github.com/actions/setup-python).


Updates `actions/checkout` from 5 to 6
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v5...v6)

Updates `github/codeql-action` from 3 to 4
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v3...v4)

Updates `Azure/setup-azd` from 2.2.0 to 2.2.1
- [Release notes](https://github.com/azure/setup-azd/releases)
- [Changelog](https://github.com/Azure/setup-azd/blob/main/CHANGELOG.md)
- [Commits](https://github.com/azure/setup-azd/compare/v2.2.0...v2.2.1)

Updates `actions/setup-python` from 5 to 6
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](https://github.com/actions/setup-python/compare/v5...v6)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: github/codeql-action
  dependency-version: '4'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: Azure/setup-azd
  dependency-version: 2.2.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: actions/setup-python
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/azure-bicep-validate.yaml | 8 ++++----
 .github/workflows/azure-dev.yaml            | 4 ++--
 .github/workflows/python-check.yaml         | 4 ++--
 3 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/.github/workflows/azure-bicep-validate.yaml b/.github/workflows/azure-bicep-validate.yaml
index fd6fa99..34cdcd1 100644
--- a/.github/workflows/azure-bicep-validate.yaml
+++ b/.github/workflows/azure-bicep-validate.yaml
@@ -15,7 +15,7 @@ jobs:
       security-events: write
     steps:
       - name: Checkout
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
 
       - name: Azure CLI script
         uses: azure/CLI@v2
@@ -25,7 +25,7 @@ jobs:
             az bicep lint --file infra/main.bicep --diagnostics-format sarif > bicep-results.sarif
   
       - name: Upload results
-        uses: github/codeql-action/upload-sarif@v3
+        uses: github/codeql-action/upload-sarif@v4
         with:
           sarif_file: bicep-results.sarif
   psrule:
@@ -34,7 +34,7 @@ jobs:
       security-events: write
     steps:
       - name: Checkout
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
 
       - name: Run PSRule analysis
         uses: microsoft/ps-rule@v2.9.0
@@ -52,6 +52,6 @@ jobs:
           PSRULE_CONFIGURATION_AZURE_BICEP_FILE_EXPANSION_TIMEOUT: '30'
 
       - name: Upload results to security tab
-        uses: github/codeql-action/upload-sarif@v3
+        uses: github/codeql-action/upload-sarif@v4
         with:
           sarif_file: reports/ps-rule-results.sarif
diff --git a/.github/workflows/azure-dev.yaml b/.github/workflows/azure-dev.yaml
index d7b5a5d..0cbdac8 100644
--- a/.github/workflows/azure-dev.yaml
+++ b/.github/workflows/azure-dev.yaml
@@ -25,10 +25,10 @@ jobs:
       AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }}
     steps:
       - name: Checkout
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
 
       - name: Install azd
-        uses: Azure/setup-azd@v2.2.0
+        uses: Azure/setup-azd@v2.2.1
 
       - name: Log in with Azure (Federated Credentials)
         run: |
diff --git a/.github/workflows/python-check.yaml b/.github/workflows/python-check.yaml
index bf07465..b9d18ca 100644
--- a/.github/workflows/python-check.yaml
+++ b/.github/workflows/python-check.yaml
@@ -16,9 +16,9 @@ jobs:
         os: ["ubuntu-latest", "macos-latest-xlarge"]
         python_version: ["3.11", "3.12", "3.13"]
     steps:
-        - uses: actions/checkout@v5
+        - uses: actions/checkout@v6
         - name: Setup python
-          uses: actions/setup-python@v5
+          uses: actions/setup-python@v6
           with:
             python-version: ${{ matrix.python_version }}
             architecture: x64