From: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 23 Feb 2026 12:23:38 +0000 (+0000)
Subject: Bump lfreleng-actions/github2gerrit-action from 1.0.5 to 1.0.6
X-Git-Url: https://gerrit.onap.org/r/gitweb?a=commitdiff_plain;h=6847a9e14cb2cfbb1f5143055bc645046d9c1d17;p=doc.git

Bump lfreleng-actions/github2gerrit-action from 1.0.5 to 1.0.6

## Release notes

Sourced from lfreleng-actions/github2gerrit-action's releases.

v1.0.6
Bug Fixes

Fix: Add shallow clone deepening fallback for git merge --squash @​ModeSevenIndustrialSolutions (#134)

Maintenance

Chore: Bump step-security/harden-runner from 2.14.1 to 2.14.2 @dependabot[bot] (#124)
Chore: Bump lfreleng-actions/python-build-action from 1.0.2 to 1.0.3 @dependabot[bot] (#128)
Chore: Bump astral-sh/setup-uv from 7.2.1 to 7.3.0 @dependabot[bot] (#126)
Chore: Bump anchore/scan-action from 7.3.1 to 7.3.2 @dependabot[bot] (#125)
Chore: Bump ruff from 0.14.14 to 0.15.0 @dependabot[bot] (#127)
Chore: pre-commit autoupdate @pre-commit-ci[bot] (#129)
Chore: pre-commit autoupdate @pre-commit-ci[bot] (#132)
Chore: Bump typer from 0.21.1 to 0.23.1 @dependabot[bot] (#130)
Chore: Bump ruff from 0.15.0 to 0.15.1 @dependabot[bot] (#131)
Chore: Bump responses from 0.25.8 to 0.26.0 @dependabot[bot] (#138)
Chore: Bump ruff from 0.15.1 to 0.15.2 @dependabot[bot] (#137)
Chore: Bump typer from 0.23.1 to 0.24.0 @dependabot[bot] (#135)
Chore: Bump rich from 14.3.2 to 14.3.3 @dependabot[bot] (#136)

Links

Submit bugs/feature requests

## Commits

7589e2f Merge pull request #134 from modeseven-lfreleng-actions/bug-fix
c869088 Fix: SBOM audit failure due to CVE-2026-26007
c74a983 Fix: Add shallow clone deepening fallback for git merge --squash
192e613 Merge pull request #136 from lfreleng-actions/dependabot/uv/rich-14.3.3
e7952c6 Merge pull request #135 from lfreleng-actions/dependabot/uv/typer-0.24.0
d006f61 Merge pull request #137 from lfreleng-actions/dependabot/uv/ruff-0.15.2
5e48d2d Merge pull request #138 from lfreleng-actions/dependabot/uv/responses-0.26.0
8901bf1 Chore: Bump responses from 0.25.8 to 0.26.0
fbd6535 Chore: Bump ruff from 0.15.1 to 0.15.2
d4858dc Chore: Bump rich from 14.3.2 to 14.3.3
Additional commits viewable in compare view

![Dependabot compatibility score](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Issue-ID: CIMAN-33
Signed-off-by: dependabot[bot] <support@github.com>
Change-Id: I266323a9d3b096c845861b6e3d910588e8b288aa
GitHub-PR: https://github.com/onap/doc/pull/4
GitHub-Hash: 6f7da18fc2253e79
Signed-off-by: onap.gh2gerrit <releng+onap-gh2gerrit@linuxfoundation.org>
---

diff --git a/.github/workflows/call-github2gerrit.yaml b/.github/workflows/call-github2gerrit.yaml
index 36db35d62..ca2aab336 100644
--- a/.github/workflows/call-github2gerrit.yaml
+++ b/.github/workflows/call-github2gerrit.yaml
@@ -165,7 +165,7 @@ jobs:
 
       - name: 'Run GitHub2Gerrit'
         # yamllint disable-line rule:line-length
-        uses: lfreleng-actions/github2gerrit-action@7c1ba15a75dd86619139a81933f4432648d97af5  # v1.0.5
+        uses: lfreleng-actions/github2gerrit-action@7589e2f4d68a3b5d7c948330028b970730c944b0  # v1.0.6
         env:
           # Pass GERRIT_* inputs as environment variables when dispatched from Gerrit
           GERRIT_BRANCH: ${{ github.event.inputs.GERRIT_BRANCH || '' }}