Bump the actions group across 1 directory with 4 updates #145

dependabot · 2024-11-18T19:33:16Z

Bumps the actions group with 4 updates in the / directory: docker/build-push-action, peaceiris/actions-gh-pages, softprops/action-gh-release and codecov/codecov-action.

Updates docker/build-push-action from 5 to 6

Release notes

Sourced from docker/build-push-action's releases.

v6.0.0

Export build record and generate build summary by @crazy-max in docker/build-push-action#1120

Bump @docker/actions-toolkit from 0.24.0 to 0.26.0 in docker/build-push-action#1132 docker/build-push-action#1136 docker/build-push-action#1138

Bump braces from 3.0.2 to 3.0.3 in docker/build-push-action#1137

[!NOTE] This major release adds support for generating Build summary and exporting build record for your build. You can disable this feature by setting DOCKER_BUILD_NO_SUMMARY: true environment variable in your workflow.

Full Changelog: docker/build-push-action@v5.4.0...v6.0.0

v5.4.0

Show builder information before building by @crazy-max in docker/build-push-action#1128

Handle attestations correctly with provenance and sbom inputs by @crazy-max in docker/build-push-action#1086

Bump @docker/actions-toolkit from 0.19.0 to 0.24.0 in docker/build-push-action#1088 docker/build-push-action#1105 docker/build-push-action#1121 docker/build-push-action#1127

Bump undici from 5.28.3 to 5.28.4 in docker/build-push-action#1090

Full Changelog: docker/build-push-action@v5.3.0...v5.4.0

v5.3.0

Bump @docker/actions-toolkit from 0.18.0 to 0.19.0 in docker/build-push-action#1080

Full Changelog: docker/build-push-action@v5.2.0...v5.3.0

v5.2.0

Disable quotes detection for outputs input by @crazy-max in docker/build-push-action#1074

Warn about ignored inputs by @favonia in docker/build-push-action#1019

Bump @docker/actions-toolkit from 0.14.0 to 0.18.0 in docker/build-push-action#1070

Bump undici from 5.26.3 to 5.28.3 in docker/build-push-action#1057

Full Changelog: docker/build-push-action@v5.1.0...v5.2.0

v5.1.0

Add annotations input by @crazy-max in docker/build-push-action#992

Add secret-envs input by @elias-lundgren in docker/build-push-action#980

Bump @babel/traverse from 7.17.3 to 7.23.2 in docker/build-push-action#991

Bump @docker/actions-toolkit from 0.13.0-rc.1 to 0.14.0 in docker/build-push-action#990 docker/build-push-action#1006

Full Changelog: docker/build-push-action@v5.0.0...v5.1.0

Commits

4f58ea7 Merge pull request #1234 from docker/dependabot/npm_and_yarn/docker/actions-t...
49b5ea6 chore: update generated content
13c9fdd chore(deps): Bump @docker/actions-toolkit from 0.38.0 to 0.39.0
e44afff Merge pull request #1232 from docker/dependabot/npm_and_yarn/path-to-regexp-6...
67ebad3 chore(deps): Bump path-to-regexp from 6.2.2 to 6.3.0
32945a3 Merge pull request #1230 from docker/dependabot/npm_and_yarn/docker/actions-t...
e0fe9cf chore: update generated content
8f1ff6b chore(deps): Bump @docker/actions-toolkit from 0.37.1 to 0.38.0
5cd11c3 Merge pull request #1211 from crazy-max/summary-info-message
0aba704 chore: update generated content
Additional commits viewable in compare view

Updates peaceiris/actions-gh-pages from 3.9.3 to 4.0.0

Release notes

Sourced from peaceiris/actions-gh-pages's releases.

actions-github-pages v4.0.0

See CHANGELOG.md for more details.

Changelog

Sourced from peaceiris/actions-gh-pages's changelog.

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

4.0.0 (2024-04-08)

build

node 20.11.1 (5049354)

chore

bump node16 to node20 (#1067) (4eb285e), closes #1067

downgrade engines.npm to 8.0.0 (87231bc)

ci

pin node-version to 18 (#981) (65ebf11), closes #981

docs

add Release Strategy (67f80d9)

fix link to Nuxt github-pages (#980) (88b4d2a), closes #980

remove braces in if conditions (#920) (0fbd122), closes #920

3.9.3 (2023-03-30)

docs

fix typo, bump hugo version (#851) (884a022), closes #851

fix

fix error handling (#841) (32e33dc), closes #841

update known_hosts (#871) (31c15f0), closes #871

3.9.2 (2023-01-17)

chore

rename cicd (32c9288)

replace npm ci with install (9839780)

... (truncated)

Commits

4f9cc66 chore(release): 4.0.0
9c75028 chore(release): Add build assets
5049354 build: node 20.11.1
4eb285e chore: bump node16 to node20 (#1067)
cdc09a3 chore(deps): update dependency @types/node to v16.18.77 (#1065)
d830378 chore(deps): update dependency @types/node to v16.18.76 (#1063)
80daa1d chore(deps): update dependency @types/node to v16.18.75 (#1061)
108285e chore(deps): update dependency ts-jest to v29.1.2 (#1060)
99c95ff chore(deps): update dependency @types/node to v16.18.74 (#1058)
1f46537 chore(deps): update dependency @types/node to v16.18.73 (#1057)
Additional commits viewable in compare view

Updates softprops/action-gh-release from 1 to 2

Release notes

Sourced from softprops/action-gh-release's releases.

v2.0.0

update actions.yml declaration to node20 to address warnings

Changelog

Sourced from softprops/action-gh-release's changelog.

2.1.0

What's Changed

Exciting New Features 🎉

feat: add support for release assets with multiple spaces within the name by @dukhine in softprops/action-gh-release#518

feat: preserve upload order by @richarddd in softprops/action-gh-release#500

Other Changes 🔄

chore(deps): bump @types/node from 22.8.2 to 22.8.7 by @dependabot in softprops/action-gh-release#539

New Contributors

@dukhine made their first contribution in softprops/action-gh-release#518

@richarddd made their first contribution in softprops/action-gh-release#500

Full Changelog: softprops/action-gh-release@v2...v2.1.0

2.0.9

maintenance release with updated dependencies

2.0.8

Other Changes 🔄

chore(deps): bump prettier from 2.8.0 to 3.3.3 by @dependabot in softprops/action-gh-release#480

chore(deps): bump @types/node from 20.14.9 to 20.14.11 by @dependabot in softprops/action-gh-release#483

chore(deps): bump @octokit/plugin-throttling from 9.3.0 to 9.3.1 by @dependabot in softprops/action-gh-release#484

chore(deps): bump glob from 10.4.2 to 11.0.0 by @dependabot in softprops/action-gh-release#477

refactor: write jest config in ts by @chenrui333 in softprops/action-gh-release#485

chore(deps): bump @actions/github from 5.1.1 to 6.0.0 by @dependabot in softprops/action-gh-release#470

2.0.7

Bug fixes 🐛

Fix missing update release body by @FirelightFlagboy in softprops/action-gh-release#365

Other Changes 🔄

Bump @octokit/plugin-retry from 4.0.3 to 7.1.1 by @dependabot in softprops/action-gh-release#443

Bump typescript from 4.9.5 to 5.5.2 by @dependabot in softprops/action-gh-release#467

Bump @types/node from 20.14.6 to 20.14.8 by @dependabot in softprops/action-gh-release#469

Bump @types/node from 20.14.8 to 20.14.9 by @dependabot in softprops/action-gh-release#473

Bump typescript from 5.5.2 to 5.5.3 by @dependabot in softprops/action-gh-release#472

Bump ts-jest from 29.1.5 to 29.2.2 by @dependabot in softprops/action-gh-release#479

docs: document that existing releases are updated by @jvanbruegge in softprops/action-gh-release#474

2.0.6

maintenance release with updated dependencies

... (truncated)

Commits

e7a8f85 chore: release 2.0.9
04afa13 chore(deps): bump actions/setup-node from 4.0.4 to 4.1.0 (#535)
894468a chore(deps): bump actions/checkout from 4.2.1 to 4.2.2 (#534)
3bd23aa chore(deps): bump @types/node from 22.7.5 to 22.8.2 (#533)
21eb2f9 chore(deps): bump @types/jest from 29.5.13 to 29.5.14 (#532)
cd8b57e remove unused imports (#521)
820a5ad chore(deps): bump actions/checkout from 4.2.0 to 4.2.1 (#522)
9d04f90 chore(deps): bump @octokit/plugin-throttling from 9.3.1 to 9.3.2 (#523)
aaf1d5f chore(deps): bump @actions/core from 1.10.1 to 1.11.1 (#524)
7d33a7e chore(deps): bump @types/node from 22.5.5 to 22.7.5 (#525)
Additional commits viewable in compare view

Updates codecov/codecov-action from 4 to 5

Release notes

Sourced from codecov/codecov-action's releases.

v5.0.0

v5 Release

v5 of the Codecov GitHub Action will use the Codecov Wrapper to encapsulate the CLI. This will help ensure that the Action gets updates quicker.

Migration Guide

The v5 release also coincides with the opt-out feature for tokens for public repositories. In the Global Upload Token section of the settings page of an organization in codecov.io, you can set the ability for Codecov to receive a coverage reports from any source. This will allow contributors or other members of a repository to upload without needing access to the Codecov token. For more details see how to upload without a token.

[!WARNING]
The following arguments have been changed

file (this has been deprecated in favor of files)

plugin (this has been deprecated in favor of plugins)

The following arguments have been added:

binary

gcov_args

gcov_executable

gcov_ignore

gcov_include

report_type

skip_validation

swift_project

You can see their usage in the action.yml file.

What's Changed

chore(deps): bump to eslint9+ and remove eslint-config-google by @thomasrockhu-codecov in codecov/codecov-action#1591

build(deps-dev): bump @octokit/webhooks-types from 7.5.1 to 7.6.1 by @dependabot in codecov/codecov-action#1595

build(deps-dev): bump typescript from 5.6.2 to 5.6.3 by @dependabot in codecov/codecov-action#1604

build(deps-dev): bump @typescript-eslint/parser from 8.8.0 to 8.8.1 by @dependabot in codecov/codecov-action#1601

build(deps): bump @actions/core from 1.11.0 to 1.11.1 by @dependabot in codecov/codecov-action#1597

build(deps): bump github/codeql-action from 3.26.9 to 3.26.11 by @dependabot in codecov/codecov-action#1596

build(deps-dev): bump @typescript-eslint/eslint-plugin from 8.8.0 to 8.8.1 by @dependabot in codecov/codecov-action#1600

build(deps-dev): bump eslint from 9.11.1 to 9.12.0 by @dependabot in codecov/codecov-action#1598

build(deps): bump github/codeql-action from 3.26.11 to 3.26.12 by @dependabot in codecov/codecov-action#1609

build(deps): bump actions/checkout from 4.2.0 to 4.2.1 by @dependabot in codecov/codecov-action#1608

build(deps): bump actions/upload-artifact from 4.4.0 to 4.4.3 by @dependabot in codecov/codecov-action#1607

build(deps-dev): bump @typescript-eslint/parser from 8.8.1 to 8.9.0 by @dependabot in codecov/codecov-action#1612

build(deps-dev): bump @typescript-eslint/eslint-plugin from 8.8.1 to 8.9.0 by @dependabot in codecov/codecov-action#1611

build(deps-dev): bump @typescript-eslint/eslint-plugin from 8.9.0 to 8.10.0 by @dependabot in codecov/codecov-action#1615

build(deps-dev): bump eslint from 9.12.0 to 9.13.0 by @dependabot in codecov/codecov-action#1618

build(deps): bump github/codeql-action from 3.26.12 to 3.26.13 by @dependabot in codecov/codecov-action#1617

build(deps-dev): bump @typescript-eslint/parser from 8.9.0 to 8.10.0 by @dependabot in codecov/codecov-action#1614

build(deps-dev): bump @typescript-eslint/eslint-plugin from 8.10.0 to 8.11.0 by @dependabot in codecov/codecov-action#1620

build(deps-dev): bump @typescript-eslint/parser from 8.10.0 to 8.11.0 by @dependabot in codecov/codecov-action#1619

build(deps-dev): bump @types/jest from 29.5.13 to 29.5.14 by @dependabot in codecov/codecov-action#1622

build(deps): bump actions/checkout from 4.2.1 to 4.2.2 by @dependabot in codecov/codecov-action#1625

build(deps): bump github/codeql-action from 3.26.13 to 3.27.0 by @dependabot in codecov/codecov-action#1624

build(deps-dev): bump @typescript-eslint/eslint-plugin from 8.11.0 to 8.12.1 by @dependabot in codecov/codecov-action#1626

build(deps-dev): bump @typescript-eslint/eslint-plugin from 8.12.1 to 8.12.2 by @dependabot in codecov/codecov-action#1629

... (truncated)

Changelog

Sourced from codecov/codecov-action's changelog.

4.0.0-beta.2

Fixes

#1085 not adding -n if empty to do-upload command

4.0.0-beta.1

v4 represents a move from the universal uploader to the Codecov CLI. Although this will unlock new features for our users, the CLI is not yet at feature parity with the universal uploader.

Breaking Changes

No current support for aarch64 and alpine architectures.

Tokenless uploading is unsuported

Various arguments to the Action have been removed

3.1.4

Fixes

#967 Fix typo in README.md

#971 fix: add back in working dir

#969 fix: CLI option names for uploader

Dependencies

#970 build(deps-dev): bump @types/node from 18.15.12 to 18.16.3

#979 build(deps-dev): bump @types/node from 20.1.0 to 20.1.2

#981 build(deps-dev): bump @types/node from 20.1.2 to 20.1.4

3.1.3

Fixes

#960 fix: allow for aarch64 build

Dependencies

#957 build(deps-dev): bump jest-junit from 15.0.0 to 16.0.0

#958 build(deps): bump openpgp from 5.7.0 to 5.8.0

#959 build(deps-dev): bump @types/node from 18.15.10 to 18.15.12

3.1.2

Fixes

#718 Update README.md

#851 Remove unsupported path_to_write_report argument

#898 codeql-analysis.yml

#901 Update README to contain correct information - inputs and negate feature

#955 fix: add in all the extra arguments for uploader

Dependencies

#819 build(deps): bump openpgp from 5.4.0 to 5.5.0

#835 build(deps): bump node-fetch from 3.2.4 to 3.2.10

#840 build(deps): bump ossf/scorecard-action from 1.1.1 to 2.0.4

#841 build(deps): bump @actions/core from 1.9.1 to 1.10.0

#843 build(deps): bump @actions/github from 5.0.3 to 5.1.1

#869 build(deps): bump node-fetch from 3.2.10 to 3.3.0

#872 build(deps-dev): bump jest-junit from 13.2.0 to 15.0.0

#879 build(deps): bump decode-uri-component from 0.2.0 to 0.2.2

... (truncated)

Commits

5c47607 fix: override commit and pr values for PR cases (#1657)
3b1354a chore(release): 5.0.1 (#1656)
2e2a9c6 fix: update tokenless branch logic (#1650)
cfc521b Update README.md
0642541 fix: use marketplace v5 badge (#1646)
9688725 Update README.md
2112eae chore(deps): bump wrapper to 0.0.23 (#1644)
193421c fixL use the correct source (#1642)
6018df7 fix: update container builds (#1640)
eff1a64 fix: add missing vars (#1638)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the actions group with 4 updates in the / directory: [docker/build-push-action](https://github.com/docker/build-push-action), [peaceiris/actions-gh-pages](https://github.com/peaceiris/actions-gh-pages), [softprops/action-gh-release](https://github.com/softprops/action-gh-release) and [codecov/codecov-action](https://github.com/codecov/codecov-action). Updates `docker/build-push-action` from 5 to 6 - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](docker/build-push-action@v5...v6) Updates `peaceiris/actions-gh-pages` from 3.9.3 to 4.0.0 - [Release notes](https://github.com/peaceiris/actions-gh-pages/releases) - [Changelog](https://github.com/peaceiris/actions-gh-pages/blob/main/CHANGELOG.md) - [Commits](peaceiris/actions-gh-pages@373f7f2...4f9cc66) Updates `softprops/action-gh-release` from 1 to 2 - [Release notes](https://github.com/softprops/action-gh-release/releases) - [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md) - [Commits](softprops/action-gh-release@de2c0eb...e7a8f85) Updates `codecov/codecov-action` from 4 to 5 - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](codecov/codecov-action@v4...v5) --- updated-dependencies: - dependency-name: docker/build-push-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: peaceiris/actions-gh-pages dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: softprops/action-gh-release dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Nov 18, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the actions group across 1 directory with 4 updates #145

Bump the actions group across 1 directory with 4 updates #145

dependabot bot commented on behalf of github Nov 18, 2024 •

edited

Loading

Bump the actions group across 1 directory with 4 updates #145

Are you sure you want to change the base?

Bump the actions group across 1 directory with 4 updates #145

Conversation

dependabot bot commented on behalf of github Nov 18, 2024 • edited Loading

v6.0.0

v5.4.0

v5.3.0

v5.2.0

v5.1.0

actions-github-pages v4.0.0

Changelog

4.0.0 (2024-04-08)

build

chore

ci

docs

3.9.3 (2023-03-30)

docs

fix

3.9.2 (2023-01-17)

chore

v2.0.0

2.1.0

What's Changed

Exciting New Features 🎉

Other Changes 🔄

New Contributors

2.0.9

2.0.8

Other Changes 🔄

2.0.7

Bug fixes 🐛

Other Changes 🔄

2.0.6

v5.0.0

v5 Release

Migration Guide

What's Changed

4.0.0-beta.2

Fixes

4.0.0-beta.1

Breaking Changes

3.1.4

Fixes

Dependencies

3.1.3

Fixes

Dependencies

3.1.2

Fixes

Dependencies

dependabot bot commented on behalf of github Nov 18, 2024 •

edited

Loading