chore: update actions to be Node.js 24 compatible

.github/workflows/build-targets.yaml

@@ -40,7 +40,7 @@ jobs:
           sudo apt-get install -y quilt libkrb5-dev libx11-dev libxkbfile-dev libxml2-utils
 
       - name: Checkout code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
         with:
           submodules: recursive
 
@@ -70,7 +70,7 @@ jobs:
           fi
 
       - name: Set up Node.js
-        uses: actions/setup-node@v4
+        uses: actions/setup-node@v6
         with:
           node-version: '22'
           cache: 'npm'
@@ -96,14 +96,14 @@ jobs:
           tar -czf "${MATRIX_BUILD_TARGET}-build.tar.gz" "./$CODE_EDITOR_BUILD_TARGET"
 
       - name: Upload src artifact
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: ${{ github.sha }}-${{ matrix.build-target }}-src
           path: ${{ matrix.build-target }}-src.tar.gz
           retention-days: 90
 
       - name: Upload build artifact
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: ${{ github.sha }}-${{ matrix.build-target }}-build
           path: ${{ matrix.build-target }}-build.tar.gz
@@ -147,7 +147,7 @@ jobs:
       - name: Use role credentials for metrics
         id: aws-creds
         continue-on-error: ${{ env.REPOSITORY != 'aws/code-editor' }}
-        uses: aws-actions/configure-aws-credentials@v4
+        uses: aws-actions/configure-aws-credentials@v6
         with:
           role-to-assume: ${{ env.AWS_ROLE_TO_ASSUME }}
           role-duration-seconds: 900

.github/workflows/gitsecrets.yml

@@ -12,7 +12,7 @@ jobs:
     name: Git Secrets Scan
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
         with:
           path: aws/code-editor
       - name: Git Secrets Scan Script

.github/workflows/release.yaml

@@ -16,7 +16,7 @@ jobs:
       GH_TOKEN: ${{ github.token }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
         with:
           fetch-depth: 0
 
@@ -151,7 +151,7 @@ jobs:
       - name: Use role credentials for metrics
         id: aws-creds
         continue-on-error: ${{ env.REPOSITORY != 'aws/code-editor' }}
-        uses: aws-actions/configure-aws-credentials@v4
+        uses: aws-actions/configure-aws-credentials@v6
         with:
           role-to-assume: ${{ env.AWS_ROLE_TO_ASSUME }}
           role-duration-seconds: 900

.github/workflows/security-scan.yaml

@@ -36,7 +36,7 @@ jobs:
       output-branch-name: ${{ steps.determine-pr-branches.outputs.output-branch-name || steps.get-upstream-branches.outputs.output-branch-name }}
     steps:
       - name: Checkout repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
         with:
           fetch-depth: 0
 
@@ -235,7 +235,7 @@ jobs:
     steps:
       - name: Assume IAM Role
         id: assume-aws-iam-role
-        uses: aws-actions/configure-aws-credentials@v4
+        uses: aws-actions/configure-aws-credentials@v6
         with:
           role-to-assume: ${{ secrets.AWS_ROLE_TO_ASSUME }}
           role-duration-seconds: 900
@@ -255,7 +255,7 @@ jobs:
             --value 1
 
       - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
         with:
           ref: ${{ matrix.branch }}
           submodules: recursive
@@ -301,7 +301,7 @@ jobs:
           ./scripts/prepare-src.sh "$TARGET"
 
       - name: Set up Node.js
-        uses: actions/setup-node@v4
+        uses: actions/setup-node@v6
         with:
           node-version: '22'
           cache: 'npm'
@@ -326,7 +326,7 @@ jobs:
           ./scripts/security-scan.sh scan-main-dependencies "$TARGET" "$BRANCH"
 
       - name: Upload SBOM Files
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: sbom-files-${{ matrix.target }}-${{ matrix.branch }}
           path: |
@@ -338,7 +338,7 @@ jobs:
           if-no-files-found: error
 
       - name: Upload Scan Result Files
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: scan-results-${{ matrix.target }}-${{ matrix.branch }}
           path: |
@@ -364,7 +364,7 @@ jobs:
           echo "PASS" > "scan-success-$TARGET-${output_branch}.txt"
 
       - name: Upload Success Indicator File
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: scan-success-${{ matrix.target }}-${{ matrix.branch }}
           path: scan-success-${{ matrix.target }}-${{ matrix.branch }}.txt
@@ -408,7 +408,7 @@ jobs:
         branch: ${{ fromJson(needs.get-branches-to-scan.outputs.security-scan-branches) }}
     steps:
       - name: Download all scan success files
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@v7
         with:
           pattern: scan-success-*
           merge-multiple: true
@@ -451,7 +451,7 @@ jobs:
 
       - name: Upload Branch Success File
         if: success()
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: scan-success-branch-${{ matrix.branch }}
           path: scan-success-branch-${{ matrix.branch }}.txt
@@ -471,7 +471,7 @@ jobs:
     steps:
       - name: Assume IAM Role
         id: assume-aws-iam-role
-        uses: aws-actions/configure-aws-credentials@v4
+        uses: aws-actions/configure-aws-credentials@v6
         with:
           role-to-assume: ${{ secrets.AWS_ROLE_TO_ASSUME }}
           aws-region: us-east-1
@@ -490,7 +490,7 @@ jobs:
             --value 1
 
       - name: Checkout branch
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
         with:
           ref: ${{ matrix.branch }}
           submodules: recursive
@@ -544,15 +544,15 @@ jobs:
           ./scripts/security-scan.sh scan-additional-dependencies
 
       - name: Upload Additional Node.js SBOMs
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: additional-nodejs-sboms-${{ matrix.branch }}
           path: additional-node-js-sboms/
           retention-days: 90
           if-no-files-found: error
 
       - name: Upload Additional Inspector Scan Results
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: additional-inspector-results-${{ matrix.branch }}
           path: additional-scan-results/
@@ -577,7 +577,7 @@ jobs:
           echo "PASS" > "global-scan-success-${output_branch}.txt"
 
       - name: Upload Global Success Indicator File
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: global-scan-success-${{ matrix.branch }}
           path: global-scan-success-${{ matrix.branch }}.txt
@@ -632,7 +632,7 @@ jobs:
     steps:
       - name: Use role credentials for metrics
         id: aws-creds
-        uses: aws-actions/configure-aws-credentials@v4
+        uses: aws-actions/configure-aws-credentials@v6
         with:
           role-to-assume: ${{ env.AWS_ROLE_TO_ASSUME }}
           role-duration-seconds: 900

.github/workflows/smoke-tests-sagemaker.yaml

@@ -24,7 +24,7 @@ jobs:
       TEST_SAGEMAKER_ROLE: ${{ secrets.TEST_SAGEMAKER_ROLE }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
         with:
           fetch-depth: 0
 
@@ -35,7 +35,7 @@ jobs:
           sudo apt-get install -y quilt libxml2-utils jq libx11-dev libxkbfile-dev
 
       - name: Setup Node.js
-        uses: actions/setup-node@v4
+        uses: actions/setup-node@v6
         with:
           node-version: '22'
 
@@ -60,7 +60,7 @@ jobs:
           done
 
       - name: Configure ECR role AWS credentials
-        uses: aws-actions/configure-aws-credentials@v4
+        uses: aws-actions/configure-aws-credentials@v6
         with:
           role-to-assume: ${{ secrets.TEST_ECR_ROLE }}
           aws-region: ${{ env.AWS_REGION }}
@@ -104,7 +104,7 @@ jobs:
           echo "Local build artifacts cleaned up"
 
       - name: Configure SageMaker role AWS credentials
-        uses: aws-actions/configure-aws-credentials@v4
+        uses: aws-actions/configure-aws-credentials@v6
         with:
           role-to-assume: ${{ secrets.TEST_SAGEMAKER_ROLE }}
           aws-region: ${{ env.AWS_REGION }}
@@ -429,7 +429,7 @@ jobs:
 
       - name: Configure ECR role for cleanup
         if: always()
-        uses: aws-actions/configure-aws-credentials@v4
+        uses: aws-actions/configure-aws-credentials@v6
         with:
           role-to-assume: ${{ secrets.TEST_ECR_ROLE }}
           aws-region: ${{ env.AWS_REGION }}

.github/workflows/update-automation.yaml

@@ -23,7 +23,7 @@ jobs:
           sudo apt-get install -y quilt libxml2-utils jq
 
       - name: Checkout code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
         with:
           fetch-depth: 0
           submodules: true
@@ -201,12 +201,12 @@ jobs:
           sudo apt-get install -y quilt libxml2-utils jq libx11-dev libxkbfile-dev
 
       - name: Setup Node.js
-        uses: actions/setup-node@v4
+        uses: actions/setup-node@v6
         with:
           node-version: '22'    
 
       - name: Checkout code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
         with:
           ref: ${{ needs.update-automation.outputs.staging-branch }}
           fetch-depth: 0
@@ -268,7 +268,7 @@ jobs:
           done
 
       - name: Upload prepared source as artifact
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: ${{ github.run_id }}-prepared-source-${{ matrix.target }}
           path: code-editor-src/
@@ -307,12 +307,12 @@ jobs:
           npm i -g license-checker
 
       - name: Setup Node.js
-        uses: actions/setup-node@v4
+        uses: actions/setup-node@v6
         with:
           node-version: '22'    
 
       - name: Checkout code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
         with:
           ref: ${{ needs.update-automation.outputs.staging-branch }}
           fetch-depth: 0
@@ -324,7 +324,7 @@ jobs:
           git config user.email "github-actions[bot]@users.noreply.github.com"
 
       - name: Download prepared sources from artifacts
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@v7
         with:
           pattern: ${{ github.run_id }}-prepared-source-*
           merge-multiple: false
@@ -379,7 +379,7 @@ jobs:
       pull-requests: write
     steps:
       - name: Checkout code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
         with:
           ref: ${{ needs.update-automation.outputs.staging-branch }}
           fetch-depth: 0
@@ -453,14 +453,14 @@ jobs:
       AWS_ROLE_TO_ASSUME: ${{ secrets.AWS_ROLE_TO_ASSUME }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
         with:
           submodules: true
           fetch-depth: 1
 
       - name: Use role credentials for metrics
         id: aws-creds
-        uses: aws-actions/configure-aws-credentials@v4
+        uses: aws-actions/configure-aws-credentials@v6
         with:
           role-to-assume: ${{ env.AWS_ROLE_TO_ASSUME }}
           role-duration-seconds: 900
@@ -500,7 +500,7 @@ jobs:
       - name: Use role credentials for notification
         id: aws-creds
         continue-on-error: ${{ env.REPOSITORY != 'aws/code-editor' }}
-        uses: aws-actions/configure-aws-credentials@v4
+        uses: aws-actions/configure-aws-credentials@v6
         with:
           role-to-assume: ${{ env.AWS_ROLE_TO_ASSUME }}
           role-duration-seconds: 900
@@ -528,7 +528,7 @@ jobs:
     steps:
       - name: Use role credentials for metrics
         id: aws-creds
-        uses: aws-actions/configure-aws-credentials@v4
+        uses: aws-actions/configure-aws-credentials@v6
         with:
           role-to-assume: ${{ env.AWS_ROLE_TO_ASSUME }}
           role-duration-seconds: 900
@@ -559,7 +559,7 @@ jobs:
       - name: Use role credentials for metrics
         id: aws-creds
         continue-on-error: ${{ env.REPOSITORY != 'aws/code-editor' }}
-        uses: aws-actions/configure-aws-credentials@v4
+        uses: aws-actions/configure-aws-credentials@v6
         with:
           role-to-assume: ${{ env.AWS_ROLE_TO_ASSUME }}
           role-duration-seconds: 900