build(deps): bump the devops group across 1 directory with 6 updates #8545

dependabot · 2024-05-17T14:42:43Z

Bumps the devops group with 6 updates in the / directory:

Package	From	To
actions/checkout	`4.1.4`	`4.1.6`
google-github-actions/auth	`2.1.2`	`2.1.3`
r7kamura/rust-problem-matchers	`1.4.0`	`1.5.0`
codecov/codecov-action	`4.3.0`	`4.4.0`
tj-actions/changed-files	`44.3.0`	`44.4.0`
reviewdog/action-actionlint	`1.44.0`	`1.46.0`

Updates actions/checkout from 4.1.4 to 4.1.6

Release notes

Sourced from actions/checkout's releases.

v4.1.6

What's Changed

Check platform to set archive extension appropriately by @cory-miller in actions/checkout#1732

Update for 4.1.6 release by @cory-miller in actions/checkout#1733

Full Changelog: actions/checkout@v4.1.5...v4.1.6

v4.1.5

What's Changed

Update NPM dependencies by @cory-miller in actions/checkout#1703

Bump github/codeql-action from 2 to 3 by @dependabot in actions/checkout#1694

Bump actions/setup-node from 1 to 4 by @dependabot in actions/checkout#1696

Bump actions/upload-artifact from 2 to 4 by @dependabot in actions/checkout#1695

README: Suggest user.email to be 41898282+github-actions[bot]@users.noreply.github.com by @cory-miller in actions/checkout#1707

Full Changelog: actions/checkout@v4.1.4...v4.1.5

Changelog

Sourced from actions/checkout's changelog.

v4.1.6

Check platform to set archive extension appropriately by @cory-miller in actions/checkout#1732

v4.1.5

Update NPM dependencies by @cory-miller in actions/checkout#1703

Bump github/codeql-action from 2 to 3 by @dependabot in actions/checkout#1694

Bump actions/setup-node from 1 to 4 by @dependabot in actions/checkout#1696

Bump actions/upload-artifact from 2 to 4 by @dependabot in actions/checkout#1695

README: Suggest user.email to be 41898282+github-actions[bot]@users.noreply.github.com by @cory-miller in actions/checkout#1707

Commits

a5ac7e5 Update for 4.1.6 release (#1733)
24ed1a3 Check platform for extension (#1732)
44c2b7a README: Suggest user.email to be `41898282+github-actions[bot]@users.norepl...
8459bc0 Bump actions/upload-artifact from 2 to 4 (#1695)
3f603f6 Bump actions/setup-node from 1 to 4 (#1696)
fd084cd Bump github/codeql-action from 2 to 3 (#1694)
9c1e94e Update NPM dependencies (#1703)
See full diff in compare view

Updates google-github-actions/auth from 2.1.2 to 2.1.3

Release notes

Sourced from google-github-actions/auth's releases.

v2.1.3

What's Changed

Security considerations: ids are strings, not integers by @ewjoachim in google-github-actions/auth#400

security: bump undici from 5.28.3 to 5.28.4 by @dependabot in google-github-actions/auth#405

Fix typo by @sethvargo in google-github-actions/auth#408

Switch to using universe helpers by @sethvargo in google-github-actions/auth#410

Add request_reason for plumbing though user-supplied audit information by @sethvargo in google-github-actions/auth#413

Release: v2.1.3 by @google-github-actions-bot in google-github-actions/auth#414

New Contributors

@ewjoachim made their first contribution in google-github-actions/auth#400

Full Changelog: google-github-actions/auth@v2.1.2...v2.1.3

Commits

71fee32 Release: v2.1.3 (#414)
e0122d6 Add request_reason for plumbing though user-supplied audit information (#413)
34baaec Switch to using universe helpers (#410)
8d44d59 Fix typo (#408)
d176447 security: bump undici from 5.28.3 to 5.28.4 (#405)
33e827c Security considerations: ids are strings, not integers (#400)
See full diff in compare view

Updates r7kamura/rust-problem-matchers from 1.4.0 to 1.5.0

Release notes

Sourced from r7kamura/rust-problem-matchers's releases.

v1.5.0

What's Changed

Changed

Use node20 instead of node16 by @Zollerboy1 in r7kamura/rust-problem-matchers#13

Others

Change version to 1.5.0 by @github-actions in r7kamura/rust-problem-matchers#14

New Contributors

@Zollerboy1 made their first contribution in r7kamura/rust-problem-matchers#13

Full Changelog: r7kamura/rust-problem-matchers@v1.4.0...v1.5.0

Commits

9fe7ca9 Merge pull request #14 from r7kamura/bump-request-8929236596
fc2629d Change version to 1.5.0
bbc76f2 Merge pull request #13 from Zollerboy1/node-20
f155750 Use node20 instead of node16
144639f Improve README
7ea6f34 Improve README
See full diff in compare view

Updates codecov/codecov-action from 4.3.0 to 4.4.0

Release notes

Sourced from codecov/codecov-action's releases.

v4.4.0

What's Changed

chore: Clarify isPullRequestFromFork by @jsoref in codecov/codecov-action#1411

build(deps): bump actions/checkout from 4.1.4 to 4.1.5 by @dependabot in codecov/codecov-action#1423

build(deps): bump github/codeql-action from 3.25.3 to 3.25.4 by @dependabot in codecov/codecov-action#1421

build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3 by @dependabot in codecov/codecov-action#1420

feat: remove GPG and run on spawn by @thomasrockhu-codecov in codecov/codecov-action#1426

build(deps-dev): bump @typescript-eslint/parser from 7.8.0 to 7.9.0 by @dependabot in codecov/codecov-action#1428

chore(release): 4.4.0 by @thomasrockhu-codecov in codecov/codecov-action#1430

Full Changelog: codecov/codecov-action@v4.3.1...v4.4.0

v4.3.1

What's Changed

build(deps-dev): bump typescript from 5.4.4 to 5.4.5 by @dependabot in codecov/codecov-action#1370

fix: more verbose log message when failing to import pgp key by @ReenigneArcher in codecov/codecov-action#1371

build(deps-dev): bump @typescript-eslint/eslint-plugin from 7.6.0 to 7.7.0 by @dependabot in codecov/codecov-action#1374

build(deps-dev): bump @typescript-eslint/parser from 7.6.0 to 7.7.0 by @dependabot in codecov/codecov-action#1375

build(deps): bump actions/checkout from 4.1.2 to 4.1.3 by @dependabot in codecov/codecov-action#1382

build(deps): bump github/codeql-action from 3.24.10 to 3.25.1 by @dependabot in codecov/codecov-action#1381

build(deps): bump actions/upload-artifact from 4.3.1 to 4.3.2 by @dependabot in codecov/codecov-action#1380

build(deps-dev): bump @typescript-eslint/parser from 7.7.0 to 7.7.1 by @dependabot in codecov/codecov-action#1384

build(deps-dev): bump @typescript-eslint/eslint-plugin from 7.7.0 to 7.7.1 by @dependabot in codecov/codecov-action#1383

Update README.md to point to docs about tokenless by @rohan-at-sentry in codecov/codecov-action#1395

build(deps): bump actions/upload-artifact from 4.3.2 to 4.3.3 by @dependabot in codecov/codecov-action#1393

build(deps): bump actions/checkout from 4.1.3 to 4.1.4 by @dependabot in codecov/codecov-action#1392

build(deps): bump github/codeql-action from 3.25.1 to 3.25.3 by @dependabot in codecov/codecov-action#1391

style: Node Packages by @marcobiedermann in codecov/codecov-action#1394

build(deps-dev): bump @typescript-eslint/eslint-plugin from 7.7.1 to 7.8.0 by @dependabot in codecov/codecov-action#1402

build(deps-dev): bump @typescript-eslint/parser from 7.7.1 to 7.8.0 by @dependabot in codecov/codecov-action#1401

docs: Type Annotations by @marcobiedermann in codecov/codecov-action#1397

docs: main branch by @marcobiedermann in codecov/codecov-action#1396

fix: bypass token checks for forks and OIDC by @thomasrockhu-codecov in codecov/codecov-action#1404

chore(release): 4.3.1. by @thomasrockhu-codecov in codecov/codecov-action#1405

New Contributors

@ReenigneArcher made their first contribution in codecov/codecov-action#1371

@rohan-at-sentry made their first contribution in codecov/codecov-action#1395

@marcobiedermann made their first contribution in codecov/codecov-action#1394

Full Changelog: codecov/codecov-action@v4.3.0...v4.3.1

Commits

6d79887 chore(release): 4.4.0 (#1430)
37364fa build(deps-dev): bump @typescript-eslint/parser from 7.8.0 to 7.9.0 (#1428)
2791a5c fix: remove GPG and run on spawn (#1426)
b71af43 build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3 (#1420)
29f97fc build(deps): bump github/codeql-action from 3.25.3 to 3.25.4 (#1421)
645d2a5 build(deps): bump actions/checkout from 4.1.4 to 4.1.5 (#1423)
f691d46 chore: Clarify isPullRequestFromFork (#1411)
5ecb98a chore(release): 4.3.1. (#1405)
5a299d1 fix: bypass token checks for forks and OIDC (#1404)
dad251d docs: main branch (#1396)
Additional commits viewable in compare view

Updates tj-actions/changed-files from 44.3.0 to 44.4.0

Release notes

Sourced from tj-actions/changed-files's releases.

v44.4.0

What's Changed

Updated README.md by @tj-actions-bot in tj-actions/changed-files#2057

Upgraded to v44.3.0 by @tj-actions-bot in tj-actions/changed-files#2058

Updated README.md by @tj-actions-bot in tj-actions/changed-files#2059

feat: reduce the default fetch_depth from 50 to 25 and increase fetch_missing_history_max_retries by @jackton1 in tj-actions/changed-files#2060

Updated README.md by @tj-actions-bot in tj-actions/changed-files#2061

chore(deps): lock file maintenance by @renovate in tj-actions/changed-files#2062

chore(deps): update typescript-eslint monorepo to v7.7.1 by @renovate in tj-actions/changed-files#2063

chore(deps): update peter-evans/create-pull-request action to v6.0.5 by @renovate in tj-actions/changed-files#2064

chore(deps): update dependency eslint-plugin-jest to v28.3.0 by @renovate in tj-actions/changed-files#2067

Updated README.md by @tj-actions-bot in tj-actions/changed-files#2068

chore(deps): update tj-actions/eslint-changed-files action to v25 by @renovate in tj-actions/changed-files#2069

fix(deps): update dependency yaml to v2.4.2 by @renovate in tj-actions/changed-files#2070

chore(deps): lock file maintenance by @renovate in tj-actions/changed-files#2071

chore(deps): update typescript-eslint monorepo to v7.8.0 by @renovate in tj-actions/changed-files#2072

chore(deps): lock file maintenance by @renovate in tj-actions/changed-files#2073

chore(deps-dev): bump @types/node from 20.12.7 to 20.12.8 by @dependabot in tj-actions/changed-files#2074

chore(deps): update dependency eslint-plugin-jest to v28.4.0 by @renovate in tj-actions/changed-files#2075

chore(deps): update dependency eslint-plugin-jest to v28.5.0 by @renovate in tj-actions/changed-files#2077

fix(deps): update dependency @octokit/rest to v20.1.1 by @renovate in tj-actions/changed-files#2076

chore(deps): update dependency @types/lodash to v4.17.1 by @renovate in tj-actions/changed-files#2078

chore(deps): update tj-actions/verify-changed-files action to v20 by @renovate in tj-actions/changed-files#2079

chore(deps): lock file maintenance by @renovate in tj-actions/changed-files#2080

chore(deps): update dependency @types/node to v20.12.9 by @renovate in tj-actions/changed-files#2081

chore(deps): update dependency @types/node to v20.12.10 by @renovate in tj-actions/changed-files#2082

chore(deps): update codacy/codacy-analysis-cli-action action to v4.4.1 by @renovate in tj-actions/changed-files#2083

chore(deps): update dependency @types/node to v20.12.11 by @renovate in tj-actions/changed-files#2084

Full Changelog: tj-actions/changed-files@v44.3.0...v44.4.0

Changelog

Sourced from tj-actions/changed-files's changelog.

44.4.0 - (2024-05-08)

🚀 Features

Reduce the default fetch_depth from 50 to 25 and increase fetch_missing_history_max_retries (#2060) (44ce9f4) - (Tonye Jack)

🐛 Bug Fixes

deps: Update dependency @octokit/rest to v20.1.1 (396e5a5) - (renovate[bot])

deps: Update dependency yaml to v2.4.2 (1c5b7dc) - (renovate[bot])

➕ Add

Added missing changes and modified dist assets. (c393672) - (GitHub Action)

Added missing changes and modified dist assets. (15fa7fb) - (GitHub Action)

🔄 Update

Updated README.md (#2068)

Co-authored-by: renovate[bot] (0c82494) - (tj-actions[bot])

Updated README.md (#2061)

Co-authored-by: jackton1 17484350+jackton1@users.noreply.github.com (cee950d) - (tj-actions[bot])

Updated README.md (#2059)

Co-authored-by: jackton1 17484350+jackton1@users.noreply.github.com (7b65c37) - (tj-actions[bot])

Update action.yml (532b66a) - (Tonye Jack)

Updated README.md (#2057)

Co-authored-by: jackton1 17484350+jackton1@users.noreply.github.com (461ea4f) - (tj-actions[bot])

⚙️ Miscellaneous Tasks

deps: Update dependency @types/node to v20.12.11 (a29e8b5) - (renovate[bot])

deps: Update codacy/codacy-analysis-cli-action action to v4.4.1 (5a12705) - (renovate[bot])

deps: Update dependency @types/node to v20.12.10 (5819343) - (renovate[bot])

deps: Update dependency @types/node to v20.12.9 (5587afb) - (renovate[bot])

deps: Lock file maintenance (0f039f3) - (renovate[bot])

deps: Update tj-actions/verify-changed-files action to v20 (#2079) (6d4230d) - (renovate[bot])

deps: Update dependency @types/lodash to v4.17.1 (1711887) - (renovate[bot])

deps: Update dependency eslint-plugin-jest to v28.5.0 (47a2d62) - (renovate[bot])

deps: Update dependency eslint-plugin-jest to v28.4.0 (c73b12c) - (renovate[bot])

deps-dev: Bump @types/node from 20.12.7 to 20.12.8 (#2074) (41ce994) - (dependabot[bot])

deps: Lock file maintenance (192e174) - (renovate[bot])

deps: Update typescript-eslint monorepo to v7.8.0 (5e85e31) - (renovate[bot])

deps: Lock file maintenance (7871e84) - (renovate[bot])

deps: Update tj-actions/eslint-changed-files action to v25 (#2069) (4765b9f) - (renovate[bot])

... (truncated)

Commits

a29e8b5 chore(deps): update dependency @types/node to v20.12.11
5a12705 chore(deps): update codacy/codacy-analysis-cli-action action to v4.4.1
5819343 chore(deps): update dependency @types/node to v20.12.10
5587afb chore(deps): update dependency @types/node to v20.12.9
0f039f3 chore(deps): lock file maintenance
6d4230d chore(deps): update tj-actions/verify-changed-files action to v20 (#2079)
1711887 chore(deps): update dependency @types/lodash to v4.17.1
c393672 Added missing changes and modified dist assets.
396e5a5 fix(deps): update dependency @octokit/rest to v20.1.1
47a2d62 chore(deps): update dependency eslint-plugin-jest to v28.5.0
Additional commits viewable in compare view

Updates reviewdog/action-actionlint from 1.44.0 to 1.46.0

Release notes

Sourced from reviewdog/action-actionlint's releases.

Release v1.46.0

v1.46.0: PR #126 - Bump actionlint to 1.7.0

Release v1.45.0

v1.45.0: PR #123 - chore(deps): update reviewdog to 0.17.4

Commits

89a03f6 bump v1.46.0
6a477cc Merge branch 'main' into releases/v1
4b4eed5 Merge pull request #126 from reviewdog/javierjulio-patch-1
964f67c Bump actionlint to 1.7.0
51bfb04 bump v1.45.0
66c05c2 Merge branch 'main' into releases/v1
3d0ed0d Merge pull request #123 from reviewdog/depup/reviewdog
fac8190 chore(deps): update reviewdog to 0.17.4
See full diff in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
codecov/codecov-action	[>= 3.0.a, < 3.1]
tj-actions/changed-files	[>= 31.0.a, < 31.1]
tj-actions/changed-files	[>= 30.0.a, < 30.1]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the devops group with 6 updates in the / directory: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `4.1.4` | `4.1.6` | | [google-github-actions/auth](https://github.com/google-github-actions/auth) | `2.1.2` | `2.1.3` | | [r7kamura/rust-problem-matchers](https://github.com/r7kamura/rust-problem-matchers) | `1.4.0` | `1.5.0` | | [codecov/codecov-action](https://github.com/codecov/codecov-action) | `4.3.0` | `4.4.0` | | [tj-actions/changed-files](https://github.com/tj-actions/changed-files) | `44.3.0` | `44.4.0` | | [reviewdog/action-actionlint](https://github.com/reviewdog/action-actionlint) | `1.44.0` | `1.46.0` | Updates `actions/checkout` from 4.1.4 to 4.1.6 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v4.1.4...v4.1.6) Updates `google-github-actions/auth` from 2.1.2 to 2.1.3 - [Release notes](https://github.com/google-github-actions/auth/releases) - [Changelog](https://github.com/google-github-actions/auth/blob/main/CHANGELOG.md) - [Commits](google-github-actions/auth@v2.1.2...v2.1.3) Updates `r7kamura/rust-problem-matchers` from 1.4.0 to 1.5.0 - [Release notes](https://github.com/r7kamura/rust-problem-matchers/releases) - [Commits](r7kamura/rust-problem-matchers@v1.4.0...v1.5.0) Updates `codecov/codecov-action` from 4.3.0 to 4.4.0 - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](codecov/codecov-action@v4.3.0...v4.4.0) Updates `tj-actions/changed-files` from 44.3.0 to 44.4.0 - [Release notes](https://github.com/tj-actions/changed-files/releases) - [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md) - [Commits](tj-actions/changed-files@v44.3.0...v44.4.0) Updates `reviewdog/action-actionlint` from 1.44.0 to 1.46.0 - [Release notes](https://github.com/reviewdog/action-actionlint/releases) - [Commits](reviewdog/action-actionlint@v1.44.0...v1.46.0) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-patch dependency-group: devops - dependency-name: google-github-actions/auth dependency-type: direct:production update-type: version-update:semver-patch dependency-group: devops - dependency-name: r7kamura/rust-problem-matchers dependency-type: direct:production update-type: version-update:semver-minor dependency-group: devops - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: devops - dependency-name: tj-actions/changed-files dependency-type: direct:production update-type: version-update:semver-minor dependency-group: devops - dependency-name: reviewdog/action-actionlint dependency-type: direct:production update-type: version-update:semver-minor dependency-group: devops ... Signed-off-by: dependabot[bot] <support@github.com>

gustavovalverde

utACK

dependabot bot requested a review from a team as a code owner May 17, 2024 14:42

dependabot bot requested review from oxarbitrage and removed request for a team May 17, 2024 14:42

dependabot bot added A-dependencies Area: Dependency file updates A-devops Area: Pipelines, CI/CD and Dockerfiles C-trivial Category: A trivial change that is not worth mentioning in the CHANGELOG P-Low ❄️ labels May 17, 2024

dependabot bot mentioned this pull request May 17, 2024

build(deps): bump the devops group across 1 directory with 6 updates #8537

Closed

dependabot bot requested a review from arya2 May 17, 2024 14:42

gustavovalverde approved these changes May 17, 2024

View reviewed changes

mergify bot merged commit 827599e into main May 17, 2024
188 checks passed

mergify bot deleted the dependabot/github_actions/devops-7ceb9c5d9d branch May 17, 2024 16:39

upbqdn mentioned this pull request Jun 28, 2024

chore: Release v1.8.0 #8655

Merged

43 tasks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): bump the devops group across 1 directory with 6 updates #8545

build(deps): bump the devops group across 1 directory with 6 updates #8545

dependabot bot commented on behalf of github May 17, 2024

gustavovalverde left a comment

build(deps): bump the devops group across 1 directory with 6 updates #8545

build(deps): bump the devops group across 1 directory with 6 updates #8545

Conversation

dependabot bot commented on behalf of github May 17, 2024

v4.1.6

What's Changed

v4.1.5

What's Changed

v4.1.6

v4.1.5

v2.1.3

What's Changed

New Contributors

v1.5.0

What's Changed

Changed

Others

New Contributors

v4.4.0

What's Changed

v4.3.1

What's Changed

New Contributors

v44.4.0

What's Changed

44.4.0 - (2024-05-08)

🚀 Features

🐛 Bug Fixes

➕ Add

🔄 Update

⚙️ Miscellaneous Tasks

Release v1.46.0

Release v1.45.0

gustavovalverde left a comment

Choose a reason for hiding this comment