Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): bump the github-actions group with 8 updates #1

Closed
wants to merge 2 commits into from
Closed

chore(deps): bump the github-actions group with 8 updates #1

wants to merge 2 commits into from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Jul 22, 2024
edited
Loading

Bumps the github-actions group with 8 updates:

Package From To
actions/checkout 2 4
actions/setup-go 3 5
crazy-max/ghaction-import-gpg 5.3.0 6.1.0
goreleaser/goreleaser-action 4.3.0 6.0.0
golangci/golangci-lint-action 3 6
codecov/codecov-action 3 4
labd/changie-release-action 0.2.0 0.4.0
actions/add-to-project 0.5.0 1.0.2

Updates actions/checkout from 2 to 4

Release notes

Sourced from actions/checkout's releases.

v4.0.0

What's Changed

New Contributors

Full Changelog: actions/checkout@v3...v4.0.0

v3.6.0

What's Changed

New Contributors

Full Changelog: actions/checkout@v3.5.3...v3.6.0

v3.5.3

What's Changed

New Contributors

Full Changelog: actions/checkout@v3...v3.5.3

v3.5.2

What's Changed

Full Changelog: actions/checkout@v3.5.1...v3.5.2

v3.5.1

What's Changed

New Contributors

... (truncated)

Commits

Updates actions/setup-go from 3 to 5

Release notes

Sourced from actions/setup-go's releases.

v5.0.0

What's Changed

In scope of this release, we change Nodejs runtime from node16 to node20 (actions/setup-go#421). Moreover, we update some dependencies to the latest versions (actions/setup-go#445).

Besides, this release contains such changes as:

New Contributors

Full Changelog: actions/setup-go@v4...v5.0.0

v4.1.0

What's Changed

In scope of this release, slow installation on Windows was fixed by @​dsame in actions/setup-go#393 and OS version was added to primaryKey for Ubuntu runners to avoid conflicts (actions/setup-go#383)

This release also includes the following changes:

New Contributors

Full Changelog: actions/setup-go@v4...v4.1.0

v4.0.1

What's Changed

New Contributors

Full Changelog: actions/setup-go@v4...v4.0.1

v4.0.0

In scope of release we enable cache by default. The action won’t throw an error if the cache can’t be restored or saved. The action will throw a warning message but it won’t stop a build process. The cache can be disabled by specifying cache: false.

</tr></table>

... (truncated)

Commits

Updates crazy-max/ghaction-import-gpg from 5.3.0 to 6.1.0

Release notes

Sourced from crazy-max/ghaction-import-gpg's releases.

v6.1.0

Full Changelog: crazy-max/ghaction-import-gpg@v6.0.0...v6.1.0

v6.0.0

Full Changelog: crazy-max/ghaction-import-gpg@v5.4.0...v6.0.0

v5.4.0

Full Changelog: crazy-max/ghaction-import-gpg@v5.3.0...v5.4.0

Commits
  • 01dd5d3 Merge pull request #186 from crazy-max/dependabot/npm_and_yarn/actions/core-1...
  • ab787ac chore: update generated content
  • c63a019 build(deps): bump @​actions/core from 1.10.0 to 1.10.1
  • 81f63a8 Merge pull request #191 from crazy-max/dependabot/npm_and_yarn/babel/traverse...
  • 98ff7fb Merge pull request #190 from crazy-max/dependabot/npm_and_yarn/debug-4.3.4
  • e83a2ea Merge pull request #193 from crazy-max/dependabot/github_actions/actions/gith...
  • 2e40814 Merge pull request #192 from crazy-max/dependabot/npm_and_yarn/openpgp-5.11.0
  • 480319b chore: update generated content
  • 019a31d build(deps): bump actions/github-script from 6 to 7
  • 24f4ba9 build(deps): bump openpgp from 5.10.1 to 5.11.0
  • Additional commits viewable in compare view

Updates goreleaser/goreleaser-action from 4.3.0 to 6.0.0

Release notes

Sourced from goreleaser/goreleaser-action's releases.

v6.0.0

[!WARNING] This is a breaking change!

Follow the instructions here to upgrade!

What's Changed

Full Changelog: goreleaser/goreleaser-action@v5...v6.0.0

v5.1.0

Important

This version changes the default behavior of latest to ~> v1.

The next major of this action (v6), will change this to ~> v2, and will be launched together with GoReleaser v2.

What's Changed

New Contributors

Full Changelog: goreleaser/goreleaser-action@v5.0.0...v5.1.0

v5.0.0

What's Changed

Full Changelog: goreleaser/goreleaser-action@v4.6.0...v5.0.0

v4.6.0

Reverts the change to node20 runtime.

... (truncated)

Commits
  • 286f3b1 ci: fix tests
  • beac410 ci: update workflow and .goreleaser.yml
  • 18bbabc feat!: use "~> v2" as default (#463)
  • 5742e2a chore: re-generate
  • 70ccc5d chore(deps): bump @​actions/http-client from 2.2.0 to 2.2.1 (#451)
  • d55bec7 chore(deps): bump semver from 7.6.0 to 7.6.2 (#462)
  • f1dbd53 feat: lock this major version of the action to use '~> v1' as 'latest' (#461)
  • 2953d07 chore(deps): update http-client
  • 62d4b8a chore: use corepack to install yarn (#458)
  • f09f1a7 chore(deps): bump tar from 6.1.14 to 6.2.1 (#456)
  • Additional commits viewable in compare view

Updates golangci/golangci-lint-action from 3 to 6

Release notes

Sourced from golangci/golangci-lint-action's releases.

v6.0.0

What's Changed

This version removes annotations option (because it was useless), and removes the default output format (github-actions). The annotations are still produced but with another approach.

Changes

Dependencies

Full Changelog: golangci/golangci-lint-action@v5.3.0...v6.0.0

v5.3.0

What's Changed

Changes

Full Changelog: golangci/golangci-lint-action@v5.2.0...v5.3.0

v5.2.0

What's Changed

Changes

Full Changelog: golangci/golangci-lint-action@v5.1.0...v5.2.0

v5.1.0

What's Changed

Changes

Dependencies

... (truncated)

Commits
  • a4f60bb fix: use 3-dots syntax for diff on push (#1040)
  • 5815a4b doc: improve readme
  • 23faadf doc: improve readme
  • b556f25 doc: improve readme
  • 789f114 feat: rewrite format handling (#1038)
  • d36b91c build(deps-dev): bump @​typescript-eslint/parser from 7.7.1 to 7.8.0 (#1035)
  • a9eb115 build(deps): bump @​types/node from 20.12.7 to 20.12.8 (#1036)
  • bd4fa7c build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.7.1 to 7.8.0 (#...
  • 38e1018 feat: improve log about pwd/cwd (#1033)
  • 21e9e6b feat: use OS and working-directory as cache key (#1032)
  • Additional commits viewable in compare view

Updates codecov/codecov-action from 3 to 4

Release notes

Sourced from codecov/codecov-action's releases.

v4.0.0

v4 of the Codecov Action uses the CLI as the underlying upload. The CLI has helped to power new features including local upload, the global upload token, and new upcoming features.

Breaking Changes

  • The Codecov Action runs as a node20 action due to node16 deprecation. See this post from GitHub on how to migrate.
  • Tokenless uploading is unsupported. However, PRs made from forks to the upstream public repos will support tokenless (e.g. contributors to OS projects do not need the upstream repo's Codecov token). This doc shows instructions on how to add the Codecov token.
  • OS platforms have been added, though some may not be automatically detected. To see a list of platforms, see our CLI download page
  • Various arguments to the Action have been changed. Please be aware that the arguments match with the CLI's needs

v3 versions and below will not have access to CLI features (e.g. global upload token, ATS).

What's Changed

... (truncated)

Changelog

Sourced from codecov/codecov-action's changelog.

4.0.0-beta.2

Fixes

  • #1085 not adding -n if empty to do-upload command

4.0.0-beta.1

v4 represents a move from the universal uploader to the Codecov CLI. Although this will unlock new features for our users, the CLI is not yet at feature parity with the universal uploader.

Breaking Changes

  • No current support for aarch64 and alpine architectures.
  • Tokenless uploading is unsuported
  • Various arguments to the Action have been removed

3.1.4

Fixes

  • #967 Fix typo in README.md
  • #971 fix: add back in working dir
  • #969 fix: CLI option names for uploader

Dependencies

  • #970 build(deps-dev): bump @​types/node from 18.15.12 to 18.16.3
  • #979 build(deps-dev): bump @​types/node from 20.1.0 to 20.1.2
  • #981 build(deps-dev): bump @​types/node from 20.1.2 to 20.1.4

3.1.3

Fixes

  • #960 fix: allow for aarch64 build

Dependencies

  • #957 build(deps-dev): bump jest-junit from 15.0.0 to 16.0.0
  • #958 build(deps): bump openpgp from 5.7.0 to 5.8.0
  • #959 build(deps-dev): bump @​types/node from 18.15.10 to 18.15.12

3.1.2

Fixes

  • #718 Update README.md
  • #851 Remove unsupported path_to_write_report argument
  • #898 codeql-analysis.yml
  • #901 Update README to contain correct information - inputs and negate feature
  • #955 fix: add in all the extra arguments for uploader

Dependencies

  • #819 build(deps): bump openpgp from 5.4.0 to 5.5.0
  • #835 build(deps): bump node-fetch from 3.2.4 to 3.2.10
  • #840 build(deps): bump ossf/scorecard-action from 1.1.1 to 2.0.4
  • #841 build(deps): bump @​actions/core from 1.9.1 to 1.10.0
  • #843 build(deps): bump @​actions/github from 5.0.3 to 5.1.1
  • #869 build(deps): bump node-fetch from 3.2.10 to 3.3.0
  • #872 build(deps-dev): bump jest-junit from 13.2.0 to 15.0.0
  • #879 build(deps): bump decode-uri-component from 0.2.0 to 0.2.2

... (truncated)

Commits
  • e28ff12 chore(release): bump to 4.5.0 (#1477)
  • 7594baa Use an existing token even if the PR is from a fork (#1471)
  • 81c0a51 feat: add support for tokenless v3 (#1410)
  • f5e203f build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.12.0 to 7.13.0 ...
  • 7c48363 build(deps-dev): bump braces from 3.0.2 to 3.0.3 (#1475)
  • 69e5d09 build(deps-dev): bump @​typescript-eslint/parser from 7.12.0 to 7.13.0 (#1474)
  • feaf700 fix: handle trailing commas (#1470)
  • 7b6a727 build(deps): bump github/codeql-action from 3.25.7 to 3.25.8 (#1472)
  • ccf7a1f build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.11.0 to 7.12.0 ...
  • f03f015 build(deps-dev): bump @​typescript-eslint/parser from 7.11.0 to 7.12.0 (#1467)
  • Additional commits viewable in compare view

Updates labd/changie-release-action from 0.2.0 to 0.4.0

Release notes

Sourced from labd/changie-release-action's releases.

v0.4.0

No release notes provided.

v0.3.2

No release notes provided.

v0.3.1

No release notes provided.

v0.3.0

Added

  • Add version-command variable to run custom commands to set a version
Changelog

Sourced from labd/changie-release-action's changelog.

v0.4.0 - 2024-07-19

Added

  • Add option to specify changie version

v0.3.2 - 2024-05-17

Fixed

  • Updated peter-evans/create-pull-request to v6

v0.3.1 - 2023-11-14

Fixed

  • Fixed changelog body not being set correctly

v0.3.0 - 2023-04-22

Added

  • Add version-command variable to run custom commands to set a version
Commits
  • c3368fd Release v0.4.0
  • 3abe169 Fix syntax error in workflow
  • c1daf3c Add option to specify changie version
  • cabe11e Merge pull request #13 from labd/release/v0.3.2
  • b0f2789 Merge pull request #14 from labd/dependabot/github_actions/github-actions-999...
  • e4a0bf9 chore(deps): bump the github-actions group with 3 updates
  • daabefd Release v0.3.2
  • 1a3cbd6 fix: added dependency type
  • 477d699 Merge pull request #12 from labd/fix/bump-create-pull-request
  • a2c5514 fix: added dependabot-changie.yaml
  • Additional commits viewable in compare view

Updates actions/add-to-project from 0.5.0 to 1.0.2

Release notes

Sourced from actions/add-to-project's releases.

v1.0.2

What's Changed

Full Changelog: actions/add-to-project@v1.0.1...v1.0.2

v1.0.1

Summary

This release includes dependency updates, including security fix to undici.

What's Changed

Full Changelog:

@dependabot
chore(deps): bump the github-actions group with 8 updates
07c9739 
Bumps the github-actions group with 8 updates:

| Package | From | To |
| --- | --- | --- |
| [actions/checkout](https://github.com/actions/checkout) | `2` | `4` |
| [actions/setup-go](https://github.com/actions/setup-go) | `3` | `5` |
| [crazy-max/ghaction-import-gpg](https://github.com/crazy-max/ghaction-import-gpg) | `5.3.0` | `6.1.0` |
| [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) | `4.3.0` | `6.0.0` |
| [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) | `3` | `6` |
| [codecov/codecov-action](https://github.com/codecov/codecov-action) | `3` | `4` |
| [labd/changie-release-action](https://github.com/labd/changie-release-action) | `0.2.0` | `0.4.0` |
| [actions/add-to-project](https://github.com/actions/add-to-project) | `0.5.0` | `1.0.2` |


Updates `actions/checkout` from 2 to 4
- [Release notes](https://github.com/actions/checkout/releases)
- [Commits](actions/checkout@v2...v4)

Updates `actions/setup-go` from 3 to 5
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](actions/setup-go@v3...v5)

Updates `crazy-max/ghaction-import-gpg` from 5.3.0 to 6.1.0
- [Release notes](https://github.com/crazy-max/ghaction-import-gpg/releases)
- [Commits](crazy-max/ghaction-import-gpg@72b6676...01dd5d3)

Updates `goreleaser/goreleaser-action` from 4.3.0 to 6.0.0
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](goreleaser/goreleaser-action@336e299...286f3b1)

Updates `golangci/golangci-lint-action` from 3 to 6
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](golangci/golangci-lint-action@v3...v6)

Updates `codecov/codecov-action` from 3 to 4
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](codecov/codecov-action@v3...v4)

Updates `labd/changie-release-action` from 0.2.0 to 0.4.0
- [Release notes](https://github.com/labd/changie-release-action/releases)
- [Changelog](https://github.com/labd/changie-release-action/blob/main/CHANGELOG.md)
- [Commits](labd/changie-release-action@v0.2.0...v0.4.0)

Updates `actions/add-to-project` from 0.5.0 to 1.0.2
- [Release notes](https://github.com/actions/add-to-project/releases)
- [Commits](actions/add-to-project@v0.5.0...v1.0.2)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: crazy-max/ghaction-import-gpg
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: goreleaser/goreleaser-action
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: golangci/golangci-lint-action
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: codecov/codecov-action
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: labd/changie-release-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: actions/add-to-project
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Jul 22, 2024
@dependabot Dependabot
Copy link
Author

dependabot bot commented on behalf of github Jul 22, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Jul 22, 2024
@dependabot dependabot bot deleted the dependabot/github_actions/github-actions-343eea74d8 branch July 22, 2024 14:31
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants