Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the actions group across 1 directory with 11 updates #340

Closed
wants to merge 1 commit into from
Closed

Bump the actions group across 1 directory with 11 updates #340

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 27, 2025
edited
Loading

Bumps the actions group with 11 updates in the / directory:

Package From To
actions/checkout 3 4
actions/setup-go 5.0.1 5.3.0
azure/login 2.1.1 2.2.0
actions/upload-artifact 4.3.3 4.6.0
actions/download-artifact 4.1.7 4.1.8
docker/setup-buildx-action 2.8.0 3.8.0
aquasecurity/trivy-action 0.22.0 0.29.0
mindsers/changelog-reader-action 2.2.2 2.2.3
ncipollo/release-action 1.14.0 1.15.0
jandelgado/gcov2lcov-action 1.0.9 1.1.1
coverallsapp/github-action 2.2.1 2.3.6

Updates actions/checkout from 3 to 4

Release notes

Sourced from actions/checkout's releases.

v4.0.0

What's Changed

New Contributors

Full Changelog: actions/checkout@v3...v4.0.0

v3.6.0

What's Changed

New Contributors

Full Changelog: actions/checkout@v3.5.3...v3.6.0

v3.5.3

What's Changed

New Contributors

Full Changelog: actions/checkout@v3...v3.5.3

v3.5.2

What's Changed

Full Changelog: actions/checkout@v3.5.1...v3.5.2

v3.5.1

What's Changed

New Contributors

... (truncated)

Commits

Updates actions/setup-go from 5.0.1 to 5.3.0

Release notes

Sourced from actions/setup-go's releases.

v5.3.0

What's Changed

New Contributors

Full Changelog: actions/setup-go@v5...v5.3.0

v5.2.0

What's Changed

  • Leveraging the raw API to retrieve the version-manifest, as it does not impose a rate limit and hence facilitates unrestricted consumption without the need for a token for Github Enterprise Servers by @​Shegox in actions/setup-go#496

New Contributors

Full Changelog: actions/setup-go@v5...v5.2.0

v5.1.0

What's Changed

Bug Fixes

New Contributors

Full Changelog: actions/setup-go@v5...v5.1.0

v5.0.2

What's Changed

Bug fixes:

Dependency updates:

... (truncated)

Commits
  • f111f33 Bump actions/publish-immutable-action from 0.0.3 to 0.0.4 (#534)
  • 3d10edb Add new permission section (#533)
  • 43e1389 Configure Dependabot settings (#530)
  • f81f022 Use the new cache service: upgrade @actions/cache to ^4.0.0 (#531)
  • 3041bf5 feat: fallback to "raw" endpoint for manifest when rate limit is reached (#496)
  • 41dfa10 Enhance workflows and Upgrade micromatch Dependency (#510)
  • 9419772 Revise isGhes logic (#511)
  • d60b41a Merge pull request #502 from actions/Jcambass-patch-1
  • e09f57f Upgrade IA Publish
  • df1a117 Merge pull request #500 from actions/Jcambass-patch-1
  • Additional commits viewable in compare view

Updates azure/login from 2.1.1 to 2.2.0

Release notes

Sourced from azure/login's releases.

Azure Login Action v2.2.0

What's Changed

New Contributors

Full Changelog: Azure/login@v2.1.1...v2.2.0

Commits

Updates actions/upload-artifact from 4.3.3 to 4.6.0

Release notes

Sourced from actions/upload-artifact's releases.

v4.6.0

What's Changed

Full Changelog: actions/upload-artifact@v4...v4.6.0

v4.5.0

What's Changed

New Contributors

Full Changelog: actions/upload-artifact@v4.4.3...v4.5.0

v4.4.3

What's Changed

Full Changelog: actions/upload-artifact@v4.4.2...v4.4.3

v4.4.2

What's Changed

Full Changelog: actions/upload-artifact@v4.4.1...v4.4.2

v4.4.1

What's Changed

New Contributors

Full Changelog: actions/upload-artifact@v4.4.0...v4.4.1

v4.4.0

Notice: Breaking Changes ⚠️

We will no longer include hidden files and folders by default in the upload-artifact action of this version. This reduces the risk that credentials are accidentally uploaded into artifacts. Customers who need to continue to upload these files can use a new option, include-hidden-files, to continue to do so.

See "Notice of upcoming deprecations and breaking changes in GitHub Actions runners" changelog and this issue for more details.

... (truncated)

Commits
  • 65c4c4a Merge pull request #662 from actions/yacaovsnc/add_variable_for_concurrency_a...
  • 0207619 move files back to satisfy licensed ci
  • 1ecca81 licensed cache updates
  • 9742269 Expose env vars to controll concurrency and timeout
  • 6f51ac0 Merge pull request #656 from bdehamer/bdehamer/artifact-digest
  • c40c16d add new artifact-digest output
  • 735efb4 bump @​actions/artifact from 2.1.11 to 2.2.0
  • 184d73b Merge pull request #578 from hamirmahal/fix/deprecated-nodejs-usage-in-action
  • b4a0a98 Merge branch 'main' into fix/deprecated-nodejs-usage-in-action
  • b4b15b8 Merge pull request #632 from actions/joshmgross/undo-dependency-changes
  • Additional commits viewable in compare view

Updates actions/download-artifact from 4.1.7 to 4.1.8

Release notes

Sourced from actions/download-artifact's releases.

v4.1.8

What's Changed

Full Changelog: actions/download-artifact@v4...v4.1.8

Commits
  • fa0a91b Merge pull request #341 from actions/robherley/bump-pkgs
  • b54d088 Update @​actions/artifact version, bump dependencies
  • See full diff in compare view

Updates docker/setup-buildx-action from 2.8.0 to 3.8.0

Release notes

Sourced from docker/setup-buildx-action's releases.

v3.8.0

Full Changelog: docker/setup-buildx-action@v3.7.1...v3.8.0

v3.7.1

Full Changelog: docker/setup-buildx-action@v3.7.0...v3.7.1

v3.7.0

Full Changelog: docker/setup-buildx-action@v3.6.1...v3.7.0

v3.6.1

Full Changelog: docker/setup-buildx-action@v3.6.0...v3.6.1

v3.6.0

Full Changelog: docker/setup-buildx-action@v3.5.0...v3.6.0

v3.5.0

Full Changelog: docker/setup-buildx-action@v3.4.0...v3.5.0

v3.4.0

Full Changelog: docker/setup-buildx-action@v3.3.0...v3.4.0

v3.3.0

Full Changelog: docker/setup-buildx-action@v3.2.0...v3.3.0

... (truncated)

Commits
  • 6524bf6 Merge pull request #390 from crazy-max/buildx-cloud-latest
  • 8d5e074 chore: update generated content
  • 7199e57 make cloud prefix optional to download buildx if driver is cloud
  • db63cee Merge pull request #381 from docker/dependabot/github_actions/codecov/codecov...
  • 043ebe1 Merge pull request #389 from docker/dependabot/npm_and_yarn/docker/actions-to...
  • 686da90 chore: update generated content
  • a3d7487 Merge pull request #382 from docker/dependabot/npm_and_yarn/cross-spawn-7.0.6
  • 4dcdbce build(deps): bump @​docker/actions-toolkit from 0.39.0 to 0.48.0
  • 1a8ac74 ci: fix deprecated input for codecov-action
  • e827ebe build(deps): bump cross-spawn from 7.0.3 to 7.0.6
  • Additional commits viewable in compare view

Updates aquasecurity/trivy-action from 0.22.0 to 0.29.0

Release notes

Sourced from aquasecurity/trivy-action's releases.

v0.29.0

What's Changed

New Contributors

Full Changelog: aquasecurity/trivy-action@0.28.0...0.29.0

v0.28.0

What's Changed

Full Changelog: aquasecurity/trivy-action@0.27.0...0.28.0

v0.27.0

What's Changed

Full Changelog: aquasecurity/trivy-action@0.26.0...0.27.0

v0.26.0

What's Changed

Full Changelog: aquasecurity/trivy-action@0.25.0...0.26.0

v0.25.0

What's Changed

New Contributors

... (truncated)

Commits

Updates mindsers/changelog-reader-action from 2.2.2 to 2.2.3

Release notes

Sourced from mindsers/changelog-reader-action's releases.

v2.2.3

Fixed

  • Upgrade dependencies to solve deprecation issues.
  • Use node v20
  • Remove useless empty line between links in the body of a version
Changelog

Sourced from mindsers/changelog-reader-action's changelog.

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

[Unreleased]

[2.2.3] - 2024-03-10

Fixed

  • Upgrade dependencies to solve deprecation issues.
  • Use node v20
  • Remove useless empty line between links in the body of a version

[2.2.2] - 2022-11-23

Fixed

  • Upgrade dependencies to solve deprecation issues.

[2.2.1] - 2022-11-10

Fixed

  • Change node engine for a non-deprecated version.

[2.2.0] - 2022-09-01

Changed

  • Allow more section types into prerelease versions. #67

Fixed

  • Change the links' syntax to make them correctly recognized by GitHub.

[2.1.1] - 2022-07-03

Fixed

  • The action was returning empty data since the last version. Now correctly returns selected entries data.

[2.1.0] - 2022-06-14

Added

  • Introduced changelog validation to help keep the release version in line with Semantic Versioning

... (truncated)

Commits

Updates ncipollo/release-action from 1.14.0 to 1.15.0

Release notes

Sourced from ncipollo/release-action's releases.

v1.15.0

What's Changed

Add more explicit error when release list API call fails.

TLDR below - many dependency updates.

New Contributors

... (truncated)

Commits
  • cdcc88a update Chinese README (#484)
  • 033b82b Throw explicit error if list releases reponse doesn't have data
  • e774b3e Skip typescript checks
  • 80732cc Bump typescript from 5.5.4 to 5.7.3 (#490)
  • 8b72352 Fix ArtifactUploader errors
  • e1e1013 Bump @​actions/core from 1.10.1 to 1.11.1 (#488)
  • 7fdd38c Bump ts-jest from 29.2.4 to 29.2.5 (#464)
  • fb175cc Bump @​types/jest from 29.5.12 to 29.5.14 (Description has been truncated

@dependabot
Bump the actions group across 1 directory with 11 updates
73e4e08 
Bumps the actions group with 11 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [actions/checkout](https://github.com/actions/checkout) | `3` | `4` |
| [actions/setup-go](https://github.com/actions/setup-go) | `5.0.1` | `5.3.0` |
| [azure/login](https://github.com/azure/login) | `2.1.1` | `2.2.0` |
| [actions/upload-artifact](https://github.com/actions/upload-artifact) | `4.3.3` | `4.6.0` |
| [actions/download-artifact](https://github.com/actions/download-artifact) | `4.1.7` | `4.1.8` |
| [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) | `2.8.0` | `3.8.0` |
| [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) | `0.22.0` | `0.29.0` |
| [mindsers/changelog-reader-action](https://github.com/mindsers/changelog-reader-action) | `2.2.2` | `2.2.3` |
| [ncipollo/release-action](https://github.com/ncipollo/release-action) | `1.14.0` | `1.15.0` |
| [jandelgado/gcov2lcov-action](https://github.com/jandelgado/gcov2lcov-action) | `1.0.9` | `1.1.1` |
| [coverallsapp/github-action](https://github.com/coverallsapp/github-action) | `2.2.1` | `2.3.6` |



Updates `actions/checkout` from 3 to 4
- [Release notes](https://github.com/actions/checkout/releases)
- [Commits](actions/checkout@v3...v4)

Updates `actions/setup-go` from 5.0.1 to 5.3.0
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](actions/setup-go@cdcb360...f111f33)

Updates `azure/login` from 2.1.1 to 2.2.0
- [Release notes](https://github.com/azure/login/releases)
- [Commits](Azure/login@6c25186...a65d910)

Updates `actions/upload-artifact` from 4.3.3 to 4.6.0
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](actions/upload-artifact@6546280...65c4c4a)

Updates `actions/download-artifact` from 4.1.7 to 4.1.8
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](actions/download-artifact@65a9edc...fa0a91b)

Updates `docker/setup-buildx-action` from 2.8.0 to 3.8.0
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](docker/setup-buildx-action@16c0bc4...6524bf6)

Updates `aquasecurity/trivy-action` from 0.22.0 to 0.29.0
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](aquasecurity/trivy-action@595be6a...18f2510)

Updates `mindsers/changelog-reader-action` from 2.2.2 to 2.2.3
- [Release notes](https://github.com/mindsers/changelog-reader-action/releases)
- [Changelog](https://github.com/mindsers/changelog-reader-action/blob/master/CHANGELOG.md)
- [Commits](mindsers/changelog-reader-action@b97ce03...32aa5b4)

Updates `ncipollo/release-action` from 1.14.0 to 1.15.0
- [Release notes](https://github.com/ncipollo/release-action/releases)
- [Commits](ncipollo/release-action@2c591bc...cdcc88a)

Updates `jandelgado/gcov2lcov-action` from 1.0.9 to 1.1.1
- [Release notes](https://github.com/jandelgado/gcov2lcov-action/releases)
- [Changelog](https://github.com/jandelgado/gcov2lcov-action/blob/master/CHANGELOG.md)
- [Commits](jandelgado/gcov2lcov-action@c680c0f...4e19897)

Updates `coverallsapp/github-action` from 2.2.1 to 2.3.6
- [Release notes](https://github.com/coverallsapp/github-action/releases)
- [Commits](coverallsapp/github-action@95b1a23...648a8eb)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: azure/login
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: mindsers/changelog-reader-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions
- dependency-name: ncipollo/release-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: jandelgado/gcov2lcov-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: coverallsapp/github-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Jan 27, 2025
@dependabot dependabot bot mentioned this pull request Jan 27, 2025
Closed
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Jan 28, 2025

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot rebase.

@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Jan 29, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Jan 29, 2025
@dependabot dependabot bot deleted the dependabot/github_actions/actions-b4724ffdc7 branch January 29, 2025 14:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants