Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): Bump the actions group with 10 updates #1644

Closed
wants to merge 1 commit into from
Closed

chore(deps): Bump the actions group with 10 updates #1644

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 8, 2024
edited
Loading

Bumps the actions group with 10 updates:

Package From To
toshimaru/auto-author-assign 2.0.1 2.1.0
actions/setup-go 4 5
coursier/cache-action 6.4.4 6.4.5
coursier/setup-action 1.3.0 1.3.5
actions/upload-pages-artifact 2 3
actions/deploy-pages 2 4
actions/upload-artifact 3 4
actions/download-artifact 3 4
codecov/codecov-action 3 4
actions/labeler 4 5

Updates toshimaru/auto-author-assign from 2.0.1 to 2.1.0

Release notes

Sourced from toshimaru/auto-author-assign's releases.

v2.1.0

What's Changed

Dependencies

Full Changelog: toshimaru/auto-author-assign@v2.0.1...v2.1.0

Changelog

Sourced from toshimaru/auto-author-assign's changelog.

2.1.0 (2024-01-17)

Commits
  • ebd30f1 chore(release): 2.1.0
  • fe944cf build(deps): bump @​actions/github from 5.1.1 to 6.0.0 (#99)
  • 60a9f1a build(deps-dev): bump @​vercel/ncc from 0.38.0 to 0.38.1 (#100)
  • 5a5d40b build(deps): bump actions/setup-node from 3 to 4 (#101)
  • See full diff in compare view

Updates actions/setup-go from 4 to 5

Release notes

Sourced from actions/setup-go's releases.

v5.0.0

What's Changed

In scope of this release, we change Nodejs runtime from node16 to node20 (actions/setup-go#421). Moreover, we update some dependencies to the latest versions (actions/setup-go#445).

Besides, this release contains such changes as:

New Contributors

Full Changelog: actions/setup-go@v4...v5.0.0

v4.1.0

What's Changed

In scope of this release, slow installation on Windows was fixed by @​dsame in actions/setup-go#393 and OS version was added to primaryKey for Ubuntu runners to avoid conflicts (actions/setup-go#383)

This release also includes the following changes:

New Contributors

Full Changelog: actions/setup-go@v4...v4.1.0

v4.0.1

What's Changed

New Contributors

Full Changelog: actions/setup-go@v4...v4.0.1

Commits
  • 0c52d54 Update dependencies for node20 (#445)
  • bfd2fb3 Merge pull request #421 from chenrui333/node20-runtime
  • 3d65fa5 feat: bump to use actions/checkout@v4
  • 8a505c9 feat: bump to use node20 runtime
  • 883490d Merge pull request #417 from artemgavrilov/main
  • d45ebba Rephrase sentence
  • 317c661 Replace wildcards term with globs.
  • f90673a Merge pull request #1 from artemgavrilov/caching-docs-improvement
  • 8018234 Improve documentation regarding dependencies cachin
  • d085b4f Merge pull request #411 from galargh/fix/windows-hostedtoolcache
  • Additional commits viewable in compare view

Updates coursier/cache-action from 6.4.4 to 6.4.5

Release notes

Sourced from coursier/cache-action's releases.

v6.4.5

Updates / maintenance

New Contributors

Full Changelog: coursier/cache-action@v6...v6.4.5

Commits

Updates coursier/setup-action from 1.3.0 to 1.3.5

Release notes

Sourced from coursier/setup-action's releases.

v1.3.5

Update / maintenance

Full Changelog: coursier/setup-action@v1...v1.3.5

v1.3.4

What's Changed

Updates / maintenance

New Contributors

Full Changelog: coursier/setup-action@v1...v1.3.4

v1.3.3

What's Changed

Updates / maintenance

Full Changelog: coursier/setup-action@v1.3.2...v1.3.3

... (truncated)

Commits
  • 7bde40e Update dist (#539)
  • 04ce3a5 Merge pull request #541 from alexarchambault/node20
  • 0ce74fd Ignore formatting errors on Windows CI
  • 688ae45 Update Node to 20
  • b7148c4 Update action URL
  • ed96a87 Fix typo
  • 911a90e build(deps-dev): bump @​vercel/ncc from 0.38.0 to 0.38.1 (#501)
  • ae54f8b build(deps-dev): bump @​types/node from 20.9.0 to 20.11.13 (#538)
  • 7890dea build(deps-dev): bump eslint from 8.50.0 to 8.53.0 (#498)
  • 4056097 build(deps-dev): bump @​types/node from 20.8.0 to 20.9.0 (#500)
  • Additional commits viewable in compare view

Updates actions/upload-pages-artifact from 2 to 3

Release notes

Sourced from actions/upload-pages-artifact's releases.

v3.0.0

Changelog

To deploy a GitHub Pages site which has been uploaded with this version of actions/upload-pages-artifact, you must also use actions/deploy-pages@v4 or newer.

See details of all code changes since previous release.

Commits
  • 56afc60 Merge pull request #94 from SilverRainZ/main
  • d12fdfb Merge branch 'main' into main
  • aef5542 Merge pull request #88 from uiolee/patch-1
  • 29cedd7 Merge branch 'main' into patch-1
  • a69c22e Merge pull request #92 from actions/dependabot/github_actions/non-breaking-ch...
  • 794e304 Group tar's output to prevent it from messing up logs
  • 14007f6 Bump the non-breaking-changes group with 1 update
  • 0191170 Merge pull request #91 from actions/dependabot-grouping
  • 0e7832d Update Dependabot config to group non-breaking changes
  • 1a6d9fa Update README.md
  • Additional commits viewable in compare view

Updates actions/deploy-pages from 2 to 4

Release notes

Sourced from actions/deploy-pages's releases.

v4.0.0

Changelog

  • Deploy pages using artifact IDs @​konradpabjan (#251)
  • This version requires the permission actions: read in the workflows which use it.

ℹ️ This version of actions/deploy-pages is ONLY compatible with artifacts uploaded by either:

See details of all code changes since previous release.

⚠️ For use with products other than GitHub.com, such as GitHub Enterprise Server, please consult the compatibility table.

v3.0.1

Changelog

🧰 Maintenance

See details of all code changes since previous release.

⚠️ For use with products other than GitHub.com, such as GitHub Enterprise Server, please consult the compatibility table.

v3.0.0

Changelog

See details of all code changes since previous release.

⚠️ For use with products other than GitHub.com, such as GitHub Enterprise Server, please consult the compatibility table.

v2.0.5

Changelog

... (truncated)

Commits
  • decdde0 Merge pull request #295 from lmammino/patch-1
  • 0b3be6b Update distributables
  • c2c861c Update tests
  • 294fbcd Merge branch 'main' into patch-1
  • 2a4b535 Merge pull request #298 from SimonSiefke/fix/typo
  • 4825f57 Merge branch 'main' into fix/typo
  • fa29843 Merge pull request #310 from actions/dependabot/npm_and_yarn/actions/artifact...
  • d005625 Update distributables after Dependabot 🤖
  • 636701b Bump @​actions/artifact from 2.0.1 to 2.1.1
  • 25b8009 Merge pull request #307 from actions/dependabot-grouping
  • Additional commits viewable in compare view

Updates actions/upload-artifact from 3 to 4

Release notes

Sourced from actions/upload-artifact's releases.

v4.0.0

What's Changed

The release of upload-artifact@v4 and download-artifact@v4 are major changes to the backend architecture of Artifacts. They have numerous performance and behavioral improvements.

ℹ️ However, this is a major update that includes breaking changes. Artifacts created with versions v3 and below are not compatible with the v4 actions. Uploads and downloads must use the same major actions versions. There are also key differences from previous versions that may require updates to your workflows.

For more information, please see:

  1. The changelog post.
  2. The README.
  3. The migration documentation.
  4. As well as the underlying npm package, @​actions/artifact documentation.

New Contributors

Full Changelog: actions/upload-artifact@v3...v4.0.0

v3.1.3

What's Changed

Full Changelog: actions/upload-artifact@v3...v3.1.3

v3.1.2

  • Update all @actions/* NPM packages to their latest versions- #374
  • Update all dev dependencies to their most recent versions - #375

v3.1.1

  • Update actions/core package to latest version to remove set-output deprecation warning #351

v3.1.0

What's Changed

Commits
  • 5d5d22a Merge pull request #515 from actions/eggyhead/update-artifact-v2.1.1
  • f1e993d update artifact license
  • 4881bfd updating dist:
  • a30777e @​eggyhead
  • 3a80482 Merge pull request #511 from actions/robherley/migration-docs-typo
  • 9d63e3f Merge branch 'main' into robherley/migration-docs-typo
  • dfa1ab2 fix typo with v3 artifact downloads in migration guide
  • d00351b Merge pull request #509 from markmssd/patch-1
  • 707f5a7 Update limitation of 10 artifacts upload to 500
  • 26f96df Merge pull request #505 from actions/robherley/merge-artifacts
  • Additional commits viewable in compare view

Updates actions/download-artifact from 3 to 4

Release notes

Sourced from actions/download-artifact's releases.

v4.0.0

What's Changed

The release of upload-artifact@v4 and download-artifact@v4 are major changes to the backend architecture of Artifacts. They have numerous performance and behavioral improvements.

ℹ️ However, this is a major update that includes breaking changes. Artifacts created with versions v3 and below are not compatible with the v4 actions. Uploads and downloads must use the same major actions versions. There are also key differences from previous versions that may require updates to your workflows.

For more information, please see:

  1. The changelog post.
  2. The README.
  3. The migration documentation.
  4. As well as the underlying npm package, @​actions/artifact documentation.

New Contributors

Full Changelog: actions/download-artifact@v3...v4.0.0

v3.0.2

v3.0.1

Commits
  • eaceaf8 Merge pull request #291 from actions/eggyhead/update-artifact-v2.1.1
  • 81eafdc update artifact license
  • 9ac5cad updating artifact dependency to version 2.1.1
  • 3ad8411 Merge pull request #287 from actions/robherley/sync-migration-docs
  • 1de4643 Sync migration docs with upload-artifact
  • bb3fa7f Merge pull request #275 from actions/robherley/better-log-msgs
  • a244de5 ncc
  • 355659b clarify log messages when using pattern/merge-multiple params
  • 6b208ae Merge pull request #274 from actions/vmjoseph/timeout-patch
  • 6c5b580 only adding updated license
  • Additional commits viewable in compare view

Updates codecov/codecov-action from 3 to 4

Release notes

Sourced from codecov/codecov-action's releases.

v4.0.0

v4 of the Codecov Action uses the CLI as the underlying upload. The CLI has helped to power new features including local upload, the global upload token, and new upcoming features.

Breaking Changes

  • The Codecov Action runs as a node20 action due to node16 deprecation. See this post from GitHub on how to migrate.
  • Tokenless uploading is unsupported. However, PRs made from forks to the upstream public repos will support tokenless (e.g. contributors to OS projects do not need the upstream repo's Codecov token). This doc shows instructions on how to add the Codecov token.
  • OS platforms have been added, though some may not be automatically detected. To see a list of platforms, see our CLI download page
  • Various arguments to the Action have been changed. Please be aware that the arguments match with the CLI's needs

v3 versions and below will not have access to CLI features (e.g. global upload token, ATS).

What's Changed

... (truncated)

Changelog

Sourced from codecov/codecov-action's changelog.

4.0.0-beta.2

Fixes

  • #1085 not adding -n if empty to do-upload command

4.0.0-beta.1

v4 represents a move from the universal uploader to the Codecov CLI. Although this will unlock new features for our users, the CLI is not yet at feature parity with the universal uploader.

Breaking Changes

  • No current support for aarch64 and alpine architectures.
  • Tokenless uploading is unsuported
  • Various arguments to the Action have been removed

3.1.4

Fixes

  • #967 Fix typo in README.md
  • #971 fix: add back in working dir
  • #969 fix: CLI option names for uploader

Dependencies

  • #970 build(deps-dev): bump @​types/node from 18.15.12 to 18.16.3
  • #979 build(deps-dev): bump @​types/node from 20.1.0 to 20.1.2
  • #981 build(deps-dev): bump @​types/node from 20.1.2 to 20.1.4

3.1.3

Fixes

  • #960 fix: allow for aarch64 build

Dependencies

  • #957 build(deps-dev): bump jest-junit from 15.0.0 to 16.0.0
  • #958 build(deps): bump openpgp from 5.7.0 to 5.8.0
  • #959 build(deps-dev): bump @​types/node from 18.15.10 to 18.15.12

3.1.2

Fixes

  • #718 Update README.md
  • #851 Remove unsupported path_to_write_report argument
  • #898 codeql-analysis.yml
  • #901 Update README to contain correct information - inputs and negate feature
  • #955 fix: add in all the extra arguments for uploader

Dependencies

  • #819 build(deps): bump openpgp from 5.4.0 to 5.5.0
  • #835 build(deps): bump node-fetch from 3.2.4 to 3.2.10
  • #840 build(deps): bump ossf/scorecard-action from 1.1.1 to 2.0.4
  • #841 build(deps): bump @​actions/core from 1.9.1 to 1.10.0
  • #843 build(deps): bump @​actions/github from 5.0.3 to 5.1.1
  • #869 build(deps): bump node-fetch from 3.2.10 to 3.3.0
  • #872 build(deps-dev): bump jest-junit from 13.2.0 to 15.0.0
  • #879 build(deps): bump decode-uri-component from 0.2.0 to 0.2.2

... (truncated)

Commits

Updates actions/labeler from 4 to 5

Release notes

Sourced from actions/labeler's releases.

v5.0.0

What's Changed

This release contains the following breaking changes:

  1. The ability to apply labels based on the names of base and/or head branches was added (#186 and #54). The match object for changed files was expanded with new combinations in order to make it more intuitive and flexible (#423 and #101). As a result, the configuration file structure was significantly redesigned and is not compatible with the structure of the previous version. Please read the action documentation to find out how to adapt your configuration files for use with the new action version.

  2. The bug related to the sync-labels input was fixed (#112)...

    Description has been truncated

@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Feb 8, 2024

The following labels could not be found: github_actions.

@dependabot dependabot bot requested review from moul and a team as code owners February 8, 2024 15:35
This was referenced Feb 8, 2024
Closed
Closed
Closed
@dependabot dependabot bot requested a review from ajnavarro February 8, 2024 15:35
This was referenced Feb 8, 2024
Closed
Closed
@dependabot
chore(deps): Bump the actions group with 10 updates
3b60a67 
Bumps the actions group with 10 updates:

| Package | From | To |
| --- | --- | --- |
| [toshimaru/auto-author-assign](https://github.com/toshimaru/auto-author-assign) | `2.0.1` | `2.1.0` |
| [actions/setup-go](https://github.com/actions/setup-go) | `4` | `5` |
| [coursier/cache-action](https://github.com/coursier/cache-action) | `6.4.4` | `6.4.5` |
| [coursier/setup-action](https://github.com/coursier/setup-action) | `1.3.0` | `1.3.5` |
| [actions/upload-pages-artifact](https://github.com/actions/upload-pages-artifact) | `2` | `3` |
| [actions/deploy-pages](https://github.com/actions/deploy-pages) | `2` | `4` |
| [actions/upload-artifact](https://github.com/actions/upload-artifact) | `3` | `4` |
| [actions/download-artifact](https://github.com/actions/download-artifact) | `3` | `4` |
| [codecov/codecov-action](https://github.com/codecov/codecov-action) | `3` | `4` |
| [actions/labeler](https://github.com/actions/labeler) | `4` | `5` |


Updates `toshimaru/auto-author-assign` from 2.0.1 to 2.1.0
- [Release notes](https://github.com/toshimaru/auto-author-assign/releases)
- [Changelog](https://github.com/toshimaru/auto-author-assign/blob/main/CHANGELOG.md)
- [Commits](toshimaru/auto-author-assign@v2.0.1...v2.1.0)

Updates `actions/setup-go` from 4 to 5
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](actions/setup-go@v4...v5)

Updates `coursier/cache-action` from 6.4.4 to 6.4.5
- [Release notes](https://github.com/coursier/cache-action/releases)
- [Commits](coursier/cache-action@v6.4.4...v6.4.5)

Updates `coursier/setup-action` from 1.3.0 to 1.3.5
- [Release notes](https://github.com/coursier/setup-action/releases)
- [Commits](coursier/setup-action@v1.3.0...v1.3.5)

Updates `actions/upload-pages-artifact` from 2 to 3
- [Release notes](https://github.com/actions/upload-pages-artifact/releases)
- [Commits](actions/upload-pages-artifact@v2...v3)

Updates `actions/deploy-pages` from 2 to 4
- [Release notes](https://github.com/actions/deploy-pages/releases)
- [Commits](actions/deploy-pages@v2...v4)

Updates `actions/upload-artifact` from 3 to 4
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](actions/upload-artifact@v3...v4)

Updates `actions/download-artifact` from 3 to 4
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](actions/download-artifact@v3...v4)

Updates `codecov/codecov-action` from 3 to 4
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](codecov/codecov-action@v3...v4)

Updates `actions/labeler` from 4 to 5
- [Release notes](https://github.com/actions/labeler/releases)
- [Commits](actions/labeler@v4...v5)

---
updated-dependencies:
- dependency-name: toshimaru/auto-author-assign
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
- dependency-name: coursier/cache-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions
- dependency-name: coursier/setup-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions
- dependency-name: actions/upload-pages-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
- dependency-name: actions/deploy-pages
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
- dependency-name: codecov/codecov-action
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
- dependency-name: actions/labeler
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/github_actions/actions-6ce8b66cd1 branch from ec5d3e6 to 3b60a67 Compare February 9, 2024 02:43
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Feb 12, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Feb 12, 2024
@dependabot dependabot bot deleted the dependabot/github_actions/actions-6ce8b66cd1 branch February 12, 2024 02:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@moul moul Awaiting requested review from moul

@ajnavarro ajnavarro Awaiting requested review from ajnavarro

Assignees
No one assigned
Labels
None yet
Projects
💪 Bounties & Worx
Status: Done
🚀 The Launch [DEPRECATED]
Status: No status
🧐 Review Meeting
Archived in project
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants