build(deps): bump the devops group with 4 updates #8905

dependabot · 2024-10-02T15:30:35Z

Bumps the devops group with 4 updates: actions/checkout, google-github-actions/auth, codecov/codecov-action and docker/build-push-action.

Updates actions/checkout from 4.1.7 to 4.2.0

Release notes

Sourced from actions/checkout's releases.

v4.2.0

What's Changed

Add Ref and Commit outputs by @lucacome in actions/checkout#1180

Dependabot updates in actions/checkout#1777 & actions/checkout#1872

New Contributors

@yasonk made their first contribution in actions/checkout#1869

@lucacome made their first contribution in actions/checkout#1180

Full Changelog: actions/checkout@v4.1.7...v4.2.0

Changelog

Sourced from actions/checkout's changelog.

v4.2.0

Add Ref and Commit outputs by @lucacome in actions/checkout#1180

Dependency updates by @dependabot- actions/checkout#1777, actions/checkout#1872

Commits

d632683 Prepare 4.2.0 release (#1878)
6d193bf Bump braces from 3.0.2 to 3.0.3 (#1777)
db0cee9 Bump the minor-npm-dependencies group across 1 directory with 4 updates (#1872)
b684943 Add Ref and Commit outputs (#1180)
2d7d9f7 Provide explanation for where user email came from (#1869)
9a9194f Bump docker/build-push-action from 5.3.0 to 6.5.0 (#1832)
dd960bd Bump docker/login-action in the minor-actions-dependencies group (#1831)
See full diff in compare view

Updates google-github-actions/auth from 2.1.5 to 2.1.6

Release notes

Sourced from google-github-actions/auth's releases.

v2.1.6

What's Changed

Recommend gcloud storage over gsutil by @sethvargo in google-github-actions/auth#438

Add missing log line by @sethvargo in google-github-actions/auth#448

Release: v2.1.6 by @google-github-actions-bot in google-github-actions/auth#449

Full Changelog: google-github-actions/auth@v2.1.5...v2.1.6

Commits

8254fb7 Release: v2.1.6 (#449)
d1b27fe Add missing log line (#448)
c8788cc Recommend gcloud storage over gsutil (#438)
See full diff in compare view

Updates codecov/codecov-action from 4.5.0 to 4.6.0

Release notes

Sourced from codecov/codecov-action's releases.

v4.6.0

What's Changed

build(deps): bump github/codeql-action from 3.25.8 to 3.25.10 by @dependabot in codecov/codecov-action#1481

build(deps): bump actions/checkout from 4.1.6 to 4.1.7 by @dependabot in codecov/codecov-action#1480

build(deps-dev): bump ts-jest from 29.1.4 to 29.1.5 by @dependabot in codecov/codecov-action#1479

build(deps-dev): bump @typescript-eslint/parser from 7.13.0 to 7.13.1 by @dependabot in codecov/codecov-action#1485

build(deps-dev): bump @typescript-eslint/eslint-plugin from 7.13.0 to 7.13.1 by @dependabot in codecov/codecov-action#1484

build(deps-dev): bump typescript from 5.4.5 to 5.5.2 by @dependabot in codecov/codecov-action#1490

build(deps-dev): bump @typescript-eslint/parser from 7.13.1 to 7.14.1 by @dependabot in codecov/codecov-action#1493

build(deps-dev): bump @typescript-eslint/eslint-plugin from 7.13.1 to 7.14.1 by @dependabot in codecov/codecov-action#1492

build(deps): bump github/codeql-action from 3.25.10 to 3.25.11 by @dependabot in codecov/codecov-action#1496

build(deps-dev): bump @typescript-eslint/eslint-plugin from 7.14.1 to 7.15.0 by @dependabot in codecov/codecov-action#1501

build(deps-dev): bump typescript from 5.5.2 to 5.5.3 by @dependabot in codecov/codecov-action#1500

build(deps-dev): bump @typescript-eslint/parser from 7.14.1 to 7.15.0 by @dependabot in codecov/codecov-action#1499

build(deps): bump actions/upload-artifact from 4.3.3 to 4.3.4 by @dependabot in codecov/codecov-action#1502

build(deps-dev): bump ts-jest from 29.1.5 to 29.2.0 by @dependabot in codecov/codecov-action#1504

build(deps-dev): bump @typescript-eslint/eslint-plugin from 7.15.0 to 7.16.0 by @dependabot in codecov/codecov-action#1503

build(deps-dev): bump ts-jest from 29.2.0 to 29.2.2 by @dependabot in codecov/codecov-action#1507

build(deps-dev): bump @typescript-eslint/parser from 7.15.0 to 7.16.0 by @dependabot in codecov/codecov-action#1505

build(deps): bump github/codeql-action from 3.25.11 to 3.25.12 by @dependabot in codecov/codecov-action#1509

chore(ci): restrict scorecards to codecov/codecov-action by @thomasrockhu-codecov in codecov/codecov-action#1512

build(deps-dev): bump @typescript-eslint/eslint-plugin from 7.16.0 to 7.16.1 by @dependabot in codecov/codecov-action#1514

build(deps-dev): bump @typescript-eslint/parser from 7.16.0 to 7.16.1 by @dependabot in codecov/codecov-action#1513

test: versionInfo by @marcobiedermann in codecov/codecov-action#1407

build(deps-dev): bump ts-jest from 29.2.2 to 29.2.3 by @dependabot in codecov/codecov-action#1515

build(deps): bump github/codeql-action from 3.25.12 to 3.25.13 by @dependabot in codecov/codecov-action#1516

build(deps-dev): bump typescript from 5.5.3 to 5.5.4 by @dependabot in codecov/codecov-action#1521

build(deps-dev): bump @typescript-eslint/parser from 7.16.1 to 7.17.0 by @dependabot in codecov/codecov-action#1520

build(deps-dev): bump @typescript-eslint/parser from 7.17.0 to 7.18.0 by @dependabot in codecov/codecov-action#1528

build(deps): bump github/codeql-action from 3.25.13 to 3.25.15 by @dependabot in codecov/codecov-action#1526

build(deps): bump ossf/scorecard-action from 2.3.3 to 2.4.0 by @dependabot in codecov/codecov-action#1525

build(deps-dev): bump ts-jest from 29.2.3 to 29.2.4 by @dependabot in codecov/codecov-action#1532

build(deps): bump actions/upload-artifact from 4.3.4 to 4.3.5 by @dependabot in codecov/codecov-action#1534

build(deps): bump github/codeql-action from 3.25.15 to 3.26.0 by @dependabot in codecov/codecov-action#1542

build(deps): bump actions/upload-artifact from 4.3.5 to 4.3.6 by @dependabot in codecov/codecov-action#1541

ref: Tidy up types and remove string coercion by @nicholas-codecov in codecov/codecov-action#1536

build(deps-dev): bump @octokit/webhooks-types from 3.77.1 to 7.5.1 by @dependabot in codecov/codecov-action#1545

build(deps): bump github/codeql-action from 3.26.0 to 3.26.2 by @dependabot in codecov/codecov-action#1551

feat: pass tokenless value as branch override by @joseph-sentry in codecov/codecov-action#1511

build(deps): bump actions/upload-artifact from 4.3.6 to 4.4.0 by @dependabot in codecov/codecov-action#1563

Create makefile.yml by @Hawthorne001 in codecov/codecov-action#1555

build(deps): bump github/codeql-action from 3.26.2 to 3.26.6 by @dependabot in codecov/codecov-action#1562

build(deps-dev): bump ts-jest from 29.2.4 to 29.2.5 by @dependabot in codecov/codecov-action#1557

Spell evenName in the logs correctly by @webknjaz in codecov/codecov-action#1560

build(deps-dev): bump typescript from 5.5.4 to 5.6.2 by @dependabot in codecov/codecov-action#1566

build(deps-dev): bump @types/jest from 29.5.12 to 29.5.13 by @dependabot in codecov/codecov-action#1567

build(deps): bump github/codeql-action from 3.26.6 to 3.26.7 by @dependabot in codecov/codecov-action#1569

build(deps-dev): bump eslint from 8.57.0 to 8.57.1 by @dependabot in codecov/codecov-action#1571

build(deps): bump github/codeql-action from 3.26.7 to 3.26.8 by @dependabot in codecov/codecov-action#1575

build(deps-dev): bump @vercel/ncc from 0.38.1 to 0.38.2 by @dependabot in codecov/codecov-action#1577

... (truncated)

Commits

b9fd7d1 chore(release):4.6.0 (#1587)
6f7612c fix: bump eslint parser deps (#1586)
26c7e28 build(deps): bump actions/checkout from 4.1.7 to 4.2.0 (#1583)
6f744f7 build(deps): bump github/codeql-action from 3.26.8 to 3.26.9 (#1584)
543c3d4 chore: fix typo of OSS (#1578)
e379426 build(deps-dev): bump @vercel/ncc from 0.38.1 to 0.38.2 (#1577)
42656e4 build(deps): bump github/codeql-action from 3.26.7 to 3.26.8 (#1575)
2296b6b build(deps-dev): bump eslint from 8.57.0 to 8.57.1 (#1571)
bd77bc3 build(deps): bump github/codeql-action from 3.26.6 to 3.26.7 (#1569)
180b964 build(deps-dev): bump @types/jest from 29.5.12 to 29.5.13 (#1567)
Additional commits viewable in compare view

Updates docker/build-push-action from 6.7.0 to 6.9.0

Release notes

Sourced from docker/build-push-action's releases.

v6.9.0

Bump @docker/actions-toolkit from 0.38.0 to 0.39.0 in docker/build-push-action#1234

Bump path-to-regexp from 6.2.2 to 6.3.0 in docker/build-push-action#1232

Full Changelog: docker/build-push-action@v6.8.0...v6.9.0

v6.8.0

Bump @docker/actions-toolkit from 0.37.1 to 0.38.0 in docker/build-push-action#1230

Full Changelog: docker/build-push-action@v6.7.0...v6.8.0

Commits

4f58ea7 Merge pull request #1234 from docker/dependabot/npm_and_yarn/docker/actions-t...
49b5ea6 chore: update generated content
13c9fdd chore(deps): Bump @docker/actions-toolkit from 0.38.0 to 0.39.0
e44afff Merge pull request #1232 from docker/dependabot/npm_and_yarn/path-to-regexp-6...
67ebad3 chore(deps): Bump path-to-regexp from 6.2.2 to 6.3.0
32945a3 Merge pull request #1230 from docker/dependabot/npm_and_yarn/docker/actions-t...
e0fe9cf chore: update generated content
8f1ff6b chore(deps): Bump @docker/actions-toolkit from 0.37.1 to 0.38.0
See full diff in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
codecov/codecov-action	[>= 3.0.a, < 3.1]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the devops group with 4 updates: [actions/checkout](https://github.com/actions/checkout), [google-github-actions/auth](https://github.com/google-github-actions/auth), [codecov/codecov-action](https://github.com/codecov/codecov-action) and [docker/build-push-action](https://github.com/docker/build-push-action). Updates `actions/checkout` from 4.1.7 to 4.2.0 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v4.1.7...v4.2.0) Updates `google-github-actions/auth` from 2.1.5 to 2.1.6 - [Release notes](https://github.com/google-github-actions/auth/releases) - [Changelog](https://github.com/google-github-actions/auth/blob/main/CHANGELOG.md) - [Commits](google-github-actions/auth@v2.1.5...v2.1.6) Updates `codecov/codecov-action` from 4.5.0 to 4.6.0 - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](codecov/codecov-action@v4.5.0...v4.6.0) Updates `docker/build-push-action` from 6.7.0 to 6.9.0 - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](docker/build-push-action@v6.7.0...v6.9.0) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-minor dependency-group: devops - dependency-name: google-github-actions/auth dependency-type: direct:production update-type: version-update:semver-patch dependency-group: devops - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: devops - dependency-name: docker/build-push-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: devops ... Signed-off-by: dependabot[bot] <support@github.com>

gustavovalverde

LGTM

Bumps the devops group with 4 updates: [actions/checkout](https://github.com/actions/checkout), [google-github-actions/auth](https://github.com/google-github-actions/auth), [codecov/codecov-action](https://github.com/codecov/codecov-action) and [docker/build-push-action](https://github.com/docker/build-push-action). Updates `actions/checkout` from 4.1.7 to 4.2.0 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v4.1.7...v4.2.0) Updates `google-github-actions/auth` from 2.1.5 to 2.1.6 - [Release notes](https://github.com/google-github-actions/auth/releases) - [Changelog](https://github.com/google-github-actions/auth/blob/main/CHANGELOG.md) - [Commits](google-github-actions/auth@v2.1.5...v2.1.6) Updates `codecov/codecov-action` from 4.5.0 to 4.6.0 - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](codecov/codecov-action@v4.5.0...v4.6.0) Updates `docker/build-push-action` from 6.7.0 to 6.9.0 - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](docker/build-push-action@v6.7.0...v6.9.0) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-minor dependency-group: devops - dependency-name: google-github-actions/auth dependency-type: direct:production update-type: version-update:semver-patch dependency-group: devops - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: devops - dependency-name: docker/build-push-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: devops ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

dependabot bot requested a review from a team as a code owner October 2, 2024 15:30

dependabot bot added A-dependencies Area: Dependency file updates A-devops Area: Pipelines, CI/CD and Dockerfiles C-trivial Category: A trivial change that is not worth mentioning in the CHANGELOG labels Oct 2, 2024

dependabot bot removed the request for review from a team October 2, 2024 15:30

dependabot bot added the P-Low ❄️ label Oct 2, 2024

dependabot bot requested a review from gustavovalverde October 2, 2024 15:30

gustavovalverde approved these changes Oct 7, 2024

View reviewed changes

mergify bot added a commit that referenced this pull request Oct 7, 2024

Merge of #8905

3178d38

mergify bot mentioned this pull request Oct 7, 2024

merge queue: embarking main (3bf4bc8) and #8905 together #8911

Closed

mergify bot merged commit abfb9ce into main Oct 7, 2024
204 checks passed

mergify bot deleted the dependabot/github_actions/devops-c1bebf0dfb branch October 7, 2024 15:01

oxarbitrage mentioned this pull request Oct 10, 2024

Release Zebra (v2.0.0-rc.0) #8927

Merged

43 tasks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): bump the devops group with 4 updates #8905

build(deps): bump the devops group with 4 updates #8905

dependabot bot commented on behalf of github Oct 2, 2024

gustavovalverde left a comment

build(deps): bump the devops group with 4 updates #8905

build(deps): bump the devops group with 4 updates #8905

Conversation

dependabot bot commented on behalf of github Oct 2, 2024

v4.2.0

What's Changed

New Contributors

v4.2.0

v2.1.6

What's Changed

v4.6.0

What's Changed

v6.9.0

v6.8.0

gustavovalverde left a comment

Choose a reason for hiding this comment