-
Notifications
You must be signed in to change notification settings - Fork 74k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bump the github-actions group with 14 updates #70384
Closed
dependabot
wants to merge
1
commit into
master
from
dependabot/github_actions/github-actions-f23be19037
Closed
Bump the github-actions group with 14 updates #70384
dependabot
wants to merge
1
commit into
master
from
dependabot/github_actions/github-actions-f23be19037
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Bumps the github-actions group with 14 updates: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `3.2.0` | `4.1.7` | | [actions/github-script](https://github.com/actions/github-script) | `6.3.3` | `7.0.1` | | [google/osv-scanner-action](https://github.com/google/osv-scanner-action) | `1.6.2.pre.beta1` | `1.7.4` | | [actions/setup-python](https://github.com/actions/setup-python) | `4.3.1` | `5.1.0` | | [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) | `4.2.3` | `6.1.0` | | [ossf/scorecard-action](https://github.com/ossf/scorecard-action) | `2.3.1` | `2.3.3` | | [actions/upload-artifact](https://github.com/actions/upload-artifact) | `3.pre.node20` | `4.3.3` | | [github/codeql-action](https://github.com/github/codeql-action) | `3.24.9` | `3.25.10` | | [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) | `2.2.1` | `3.3.0` | | [docker/login-action](https://github.com/docker/login-action) | `2.1.0` | `3.2.0` | | [docker/build-push-action](https://github.com/docker/build-push-action) | `3.2.0` | `6.1.0` | | [mshick/add-pr-comment](https://github.com/mshick/add-pr-comment) | `a65df5f64fc741e91c59b8359a4bc56e57aaf5b1` | `dd126dd8c253650d181ad9538d8b4fa218fc31e8` | | [actions/stale](https://github.com/actions/stale) | `7.0.0` | `9.0.0` | | [zofrex/mirror-branch](https://github.com/zofrex/mirror-branch) | `1.0.3` | `1.0.4` | Updates `actions/checkout` from 3.2.0 to 4.1.7 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v3.2.0...692973e) Updates `actions/github-script` from 6.3.3 to 7.0.1 - [Release notes](https://github.com/actions/github-script/releases) - [Commits](actions/github-script@d556fea...60a0d83) Updates `google/osv-scanner-action` from 1.6.2.pre.beta1 to 1.7.4 - [Release notes](https://github.com/google/osv-scanner-action/releases) - [Commits](google/osv-scanner-action@v1.6.2-beta1...v1.7.4) Updates `actions/setup-python` from 4.3.1 to 5.1.0 - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](actions/setup-python@2c3dd9e...82c7e63) Updates `peter-evans/create-pull-request` from 4.2.3 to 6.1.0 - [Release notes](https://github.com/peter-evans/create-pull-request/releases) - [Commits](peter-evans/create-pull-request@2b011fa...c5a7806) Updates `ossf/scorecard-action` from 2.3.1 to 2.3.3 - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](ossf/scorecard-action@0864cf1...dc50aa9) Updates `actions/upload-artifact` from 3.pre.node20 to 4.3.3 - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](actions/upload-artifact@97a0fba...6546280) Updates `github/codeql-action` from 3.24.9 to 3.25.10 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@1b1aada...23acc5c) Updates `docker/setup-buildx-action` from 2.2.1 to 3.3.0 - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](docker/setup-buildx-action@8c0edbc...d70bba7) Updates `docker/login-action` from 2.1.0 to 3.2.0 - [Release notes](https://github.com/docker/login-action/releases) - [Commits](docker/login-action@f4ef78c...0d4c9c5) Updates `docker/build-push-action` from 3.2.0 to 6.1.0 - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](docker/build-push-action@c56af95...31159d4) Updates `mshick/add-pr-comment` from a65df5f64fc741e91c59b8359a4bc56e57aaf5b1 to dd126dd8c253650d181ad9538d8b4fa218fc31e8 - [Release notes](https://github.com/mshick/add-pr-comment/releases) - [Commits](mshick/add-pr-comment@a65df5f...dd126dd) Updates `actions/stale` from 7.0.0 to 9.0.0 - [Release notes](https://github.com/actions/stale/releases) - [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md) - [Commits](actions/stale@6f05e42...28ca103) Updates `zofrex/mirror-branch` from 1.0.3 to 1.0.4 - [Release notes](https://github.com/zofrex/mirror-branch/releases) - [Commits](zofrex/mirror-branch@a8809f0...0be56f4) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: actions/github-script dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: google/osv-scanner-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: peter-evans/create-pull-request dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: actions/upload-artifact dependency-type: direct:production dependency-group: github-actions - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: docker/setup-buildx-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: docker/login-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: docker/build-push-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: mshick/add-pr-comment dependency-type: direct:production dependency-group: github-actions - dependency-name: actions/stale dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: zofrex/mirror-branch dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>
Hi @MichaelHudgins Can you please review this PR? Thank you . |
mihaimaruseac
approved these changes
Jun 26, 2024
Superseded by #70450. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
dependencies
Pull requests that update a dependency file
github_actions
Pull requests that update GitHub Actions code
size:M
CL Change Size: Medium
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the github-actions group with 14 updates:
3.2.0
4.1.7
6.3.3
7.0.1
1.6.2.pre.beta1
1.7.4
4.3.1
5.1.0
4.2.3
6.1.0
2.3.1
2.3.3
3.pre.node20
4.3.3
3.24.9
3.25.10
2.2.1
3.3.0
2.1.0
3.2.0
3.2.0
6.1.0
a65df5f64fc741e91c59b8359a4bc56e57aaf5b1
dd126dd8c253650d181ad9538d8b4fa218fc31e8
7.0.0
9.0.0
1.0.3
1.0.4
Updates
actions/checkout
from 3.2.0 to 4.1.7Release notes
Sourced from actions/checkout's releases.
... (truncated)
Changelog
Sourced from actions/checkout's changelog.
... (truncated)
Commits
692973e
Prepare 4.1.7 release (#1775)6ccd57f
Pin actions/checkout's own workflows to a known, good, stable version. (#1776)b17fe1e
Handle hidden refs (#1774)b80ff79
Bump actions/checkout from 3 to 4 (#1697)b1ec302
Bump the minor-npm-dependencies group across 1 directory with 4 updates (#1739)a5ac7e5
Update for 4.1.6 release (#1733)24ed1a3
Check platform for extension (#1732)44c2b7a
README: Suggestuser.email
to be `41898282+github-actions[bot]@users
.norepl...8459bc0
Bump actions/upload-artifact from 2 to 4 (#1695)3f603f6
Bump actions/setup-node from 1 to 4 (#1696)Updates
actions/github-script
from 6.3.3 to 7.0.1Release notes
Sourced from actions/github-script's releases.
Commits
60a0d83
Merge pull request #440 from actions/joshmgross/v7.0.1b7fb200
Update version to 7.0.112e22ed
Merge pull request #439 from actions/joshmgross/avoid-setting-base-urld319f8f
Avoid settingbaseUrl
to undefined when input is not providede69ef54
Merge pull request #425 from actions/joshmgross/node-20ee0914b
Update licensesd6fc56f
Use@types/node
for Node 20384d6cf
Fix quotations in tests8472492
Only validate GraphQLpreviews
84903f5
Removenode-fetch
from typeUpdates
google/osv-scanner-action
from 1.6.2.pre.beta1 to 1.7.4Release notes
Sourced from google/osv-scanner-action's releases.
Commits
ba0b4d1
1.7.4 release (#24)37531d8
Fixes #21 (#22)8d8993e
Fix configuration not found warning when using unified gh workflow (#20)fe5d4da
Update workflow files (#18)75532bf
Merge pull request #17 from google/update-to-v1.7.35579380
Revert workflow tag cchangese1d89d3
Update to v1.7.3667ecd2
Merge pull request #15 from thomasleplus/maind8e1333
Branches filter is not available for merge_groupc6d5eb1
Merge pull request #8 from shahar-h/upgrade-actionsUpdates
actions/setup-python
from 4.3.1 to 5.1.0Release notes
Sourced from actions/setup-python's releases.
... (truncated)
Commits
82c7e63
Documentation changes for avoiding rate limit issues on GHES (#835)10aa35a
feat: fallback to raw endpoint for manifest when rate limit is reached (#766)9a7ac94
Bump undici from 5.27.2 to 5.28.3 (#817)871daa9
Fix the "Specifying multiple Python/PyPy versions" link (#782)2f07895
Fix broken README.md link (#793)e9d6f99
Replace setup-python@v4 by setup-python@v5 in README (#776)0a5c615
Update action to node20 (#772)0ae5836
Add example of GraalPy to docs (#773)b64ffca
update actions/checkout to v4 (#761)8d28961
Examples now use checkout@v4 (#738)Updates
peter-evans/create-pull-request
from 4.2.3 to 6.1.0Release notes
Sourced from peter-evans/create-pull-request's releases.
... (truncated)
Commits
c5a7806
feat: add branch name output (#2995)4383ba9
build: update distribution (#2990)36f7648
build(deps): bump undici from 6.18.2 to 6.19.2 (#2977)5f7c158
build(deps-dev): bump@types/node
from 18.19.34 to 18.19.36 (#2976)db1713d
build(deps-dev): bump ts-jest from 29.1.4 to 29.1.5 (#2975)ca98a71
build(deps-dev): bump ws from 8.11.0 to 8.17.1 (#2970)ce00808
build(deps-dev): bump braces from 3.0.2 to 3.0.3 (#2962)7318c0b
build(deps-dev): bump prettier from 3.3.0 to 3.3.2 (#2959)e30bbbb
build: update distribution (#2947)bad19b8
build(deps-dev): bump@types/node
from 18.19.33 to 18.19.34 (#2935)Updates
ossf/scorecard-action
from 2.3.1 to 2.3.3Release notes
Sourced from ossf/scorecard-action's releases.
Commits
dc50aa9
🌱 Bump docker tag for v2.3.3 release (#1368)8ff5700
🌱 Bump github.com/ossf/scorecard/v5 from v5.0.0-rc2 to v5.0.0-rc2.0....8ba5e73
update api links to new scorecard.dev site (#1376)92ddde3
Bump github.com/ossf/scorecard/v5 from v5.0.0-rc1 to v5.0.0-rc2 (#1374)6c55905
🌱 Bump golang.org/x/net from 0.24.0 to 0.25.0 (#1373)09bb953
🌱 Bump distroless/base in the docker-images group (#1372)1511e13
🌱 Bump the github-actions group across 1 directory with 6 updates (#...df66cd8
🌱 Bump the docker-images group with 2 updates (#1370)fad9a3c
🌱 Bump distroless/base in the docker-images group (#1364)1e01a30
🌱 Bump the github-actions group with 3 updates (#1365)Updates
actions/upload-artifact
from 3.pre.node20 to 4.3.3Release notes
Sourced from actions/upload-artifact's releases.
... (truncated)
Commits
6546280
updating package versionc004fb4
Merge branch 'main' into eggyhead/use-artifact-v2.1.690aba49
updating toolkit artifact dependency to 2.1.6b06cde3
Merge pull request #563 from actions/eggyhead/release-4.3.21746f4a
Revert "updating to release 4.3.2"31685d0
updating to release 4.3.218bf333
Merge pull request #562 from actions/eggyhead/update-artifact-v215dac413b
update package lock versionbb3b4a3
updating package version3e3da83
updating artifact and core dependenciesUpdates
github/codeql-action
from 3.24.9 to 3.25.10Changelog
Sourced from github/codeql-action's changelog.
... (truncated)
Commits
23acc5c
Merge pull request #2337 from github/update-v3.25.10-5bf6dad359b72dbd
Update changelog for v3.25.105bf6dad
Merge pull request #2329 from github/henrymercer/csharp-buildless-rollback-me...Description has been truncated