Skip to content

Bump peter-evans/create-pull-request from 7 to 8 #20236

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
sandeshkr419 merged 4 commits into from
Dec 16, 2025
Merged

Bump peter-evans/create-pull-request from 7 to 8 #20236

sandeshkr419 merged 4 commits into from
Dec 16, 2025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 15, 2025
edited by coderabbitai bot
Loading

Bumps peter-evans/create-pull-request from 7 to 8.

Release notes

Sourced from peter-evans/create-pull-request's releases.

Create Pull Request v8.0.0

What's new in v8

What's Changed

New Contributors

Full Changelog: peter-evans/create-pull-request@v7.0.11...v8.0.0

Create Pull Request v7.0.11

What's Changed

Full Changelog: peter-evans/create-pull-request@v7.0.10...v7.0.11

Create Pull Request v7.0.10

⚙️ Fixes an issue where updating a pull request failed when targeting a forked repository with the same owner as its parent.

What's Changed

New Contributors

Full Changelog: peter-evans/create-pull-request@v7.0.9...v7.0.10

Create Pull Request v7.0.9

⚙️ Fixes an incompatibility with the recently released actions/checkout@v6.

What's Changed

New Contributors

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Summary by CodeRabbit

  • Chores
    • Updated CI/CD automation tooling: bumped the pull-request creation action to a newer release to improve reliability and security.
    • Added a changelog entry under Unreleased noting the tooling update so release notes reflect the dependency bump.

✏️ Tip: You can customize this high-level summary in your review settings.

@dependabot
Bump peter-evans/create-pull-request from 7 to 8
3506ff3 
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) from 7 to 8.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases)
- [Commits](peter-evans/create-pull-request@v7...v8)

---
updated-dependencies:
- dependency-name: peter-evans/create-pull-request
  dependency-version: '8'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependabot PRs with auto version bumps from dependabot dependencies Pull requests that update a dependency file labels Dec 15, 2025
@dependabot dependabot bot requested review from a team, jed326 and peternied as code owners December 15, 2025 13:06
@dependabot dependabot bot added the dependabot PRs with auto version bumps from dependabot label Dec 15, 2025
@coderabbitai
Copy link

coderabbitai bot commented Dec 15, 2025
edited
Loading

Walkthrough

Updated two GitHub Actions steps to use peter-evans/create-pull-request@v8 instead of @v7, and appended a changelog entry documenting the dependency bump.

Changes

Cohort / File(s) Summary
Workflow & changelog
\.github/workflows/version\.yml, CHANGELOG\.md		 Replaced uses: peter-evans/create-pull-request@v7 with uses: peter-evans/create-pull-request@v8 in the BASE and MAIN_BRANCH PR creation steps; added an "Unreleased 3.x" Dependencies entry recording the bump.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

  • Single, homogeneous dependency version change and a single changelog line; review for correct version string and changelog placement.

Possibly related PRs

Suggested reviewers

  • peternied
  • jed326

Poem

🐰 I hopped through CI with a spring in my feet,
Swapped seven for eight — a small, swift feat.
Workflows now chatter, changelog awakes,
Tiny bump, happy trails, and carrot cakes. 🥕

Pre-merge checks and finishing touches

❌ Failed checks (1 warning)
Check name Status Explanation Resolution
Description check ⚠️ Warning The description provides detailed release notes and changelog information from the dependency update, but lacks the required template sections like 'Description' and 'Related Issues' as specified in the repository template. Add the required PR description sections: a 'Description' section explaining what this change achieves, and a 'Related Issues' section. Include the checklist items and DCO confirmation as specified in the template.
✅ Passed checks (2 passed)
Check name Status Explanation
Title check ✅ Passed The title clearly and concisely describes the main change: updating the peter-evans/create-pull-request GitHub Action from version 7 to version 8.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
✨ Finishing touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Post copyable unit tests in a comment
  • Commit unit tests in branch dependabot/github_actions/peter-evans/create-pull-request-8
📜 Recent review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between dc4a9c0 and 62b76ce.

📒 Files selected for processing (1)
  • CHANGELOG.md (1 hunks)
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (20)
  • GitHub Check: dependabot
  • GitHub Check: precommit (25, ubuntu-24.04-arm)
  • GitHub Check: precommit (25, windows-latest)
  • GitHub Check: precommit (25, macos-15-intel)
  • GitHub Check: precommit (21, macos-15)
  • GitHub Check: precommit (21, windows-2025, true)
  • GitHub Check: precommit (25, ubuntu-latest)
  • GitHub Check: assemble (25, ubuntu-24.04-arm)
  • GitHub Check: detect-breaking-change
  • GitHub Check: assemble (25, ubuntu-latest)
  • GitHub Check: precommit (21, windows-latest)
  • GitHub Check: assemble (21, ubuntu-latest)
  • GitHub Check: precommit (25, macos-15)
  • GitHub Check: assemble (25, windows-latest)
  • GitHub Check: precommit (21, ubuntu-24.04-arm)
  • GitHub Check: assemble (21, windows-latest)
  • GitHub Check: assemble (21, ubuntu-24.04-arm)
  • GitHub Check: precommit (21, macos-15-intel)
  • GitHub Check: precommit (21, ubuntu-latest)
  • GitHub Check: Analyze (java)
🔇 Additional comments (1)
CHANGELOG.md (1)

27-27: Changelog entry accurately reflects the create-pull-request bump.

The new dependency line is formatted consistently and correctly documents the action version change and PR reference. Please just confirm it matches the actual workflow updates (all usages moved from @v7 to @v8) so the changelog stays truthful.

Comment @coderabbitai help to get the list of available commands and usage tips.

dependabot bot and others added 2 commits December 15, 2025 13:09
@dependabot
Update changelog
c69dbab 
Signed-off-by: dependabot[bot] <support@github.com>
@cwperks
Merge branch 'main' into dependabot/github_actions/peter-evans/create…
dc4a9c0 
…-pull-request-8

Signed-off-by: Craig Perkins <cwperx@amazon.com>
@cwperks
Merge branch 'main' into dependabot/github_actions/peter-evans/create…
62b76ce 
…-pull-request-8

Signed-off-by: Craig Perkins <cwperx@amazon.com>
@sandeshkr419 sandeshkr419 merged commit e798353 into main Dec 16, 2025
33 checks passed
@sandeshkr419 sandeshkr419 deleted the dependabot/github_actions/peter-evans/create-pull-request-8 branch December 16, 2025 01:24
@coderabbitai coderabbitai bot mentioned this pull request Dec 17, 2025
Open
2 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cwperks cwperks cwperks approved these changes

@jed326 jed326 Awaiting requested review from jed326 jed326 is a code owner

@peternied peternied Awaiting requested review from peternied peternied is a code owner

Assignees

No one assigned

Labels

dependabot PRs with auto version bumps from dependabot dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@cwperks @sandeshkr419