forked from enterprise-contract/ec-cli
-
Notifications
You must be signed in to change notification settings - Fork 0
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
build(deps): bump the all group across 1 directory with 11 updates #189
Closed
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Bumps the all group with 11 updates in the / directory: | Package | From | To | | --- | --- | --- | | [step-security/harden-runner](https://github.com/step-security/harden-runner) | `2.7.0` | `2.8.0` | | [actions/checkout](https://github.com/actions/checkout) | `4.1.2` | `4.1.6` | | [actions/cache](https://github.com/actions/cache) | `4.0.1` | `4.0.2` | | [actions/setup-go](https://github.com/actions/setup-go) | `5.0.0` | `5.0.1` | | [codecov/codecov-action](https://github.com/codecov/codecov-action) | `4.1.0` | `4.4.1` | | [github/codeql-action](https://github.com/github/codeql-action) | `3.24.8` | `3.25.6` | | [actions/configure-pages](https://github.com/actions/configure-pages) | `4.0.0` | `5.0.0` | | [actions/deploy-pages](https://github.com/actions/deploy-pages) | `4.0.4` | `4.0.5` | | [softprops/action-gh-release](https://github.com/softprops/action-gh-release) | `2.0.4` | `2.0.5` | | [ossf/scorecard-action](https://github.com/ossf/scorecard-action) | `2.3.1` | `2.3.3` | | [actions/upload-artifact](https://github.com/actions/upload-artifact) | `4.3.1` | `4.3.3` | Updates `step-security/harden-runner` from 2.7.0 to 2.8.0 - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](step-security/harden-runner@63c24ba...f086349) Updates `actions/checkout` from 4.1.2 to 4.1.6 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@9bb5618...a5ac7e5) Updates `actions/cache` from 4.0.1 to 4.0.2 - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](actions/cache@ab5e6d0...0c45773) Updates `actions/setup-go` from 5.0.0 to 5.0.1 - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](actions/setup-go@0c52d54...cdcb360) Updates `codecov/codecov-action` from 4.1.0 to 4.4.1 - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](codecov/codecov-action@54bcd87...125fc84) Updates `github/codeql-action` from 3.24.8 to 3.25.6 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@05963f4...9fdb3e4) Updates `actions/configure-pages` from 4.0.0 to 5.0.0 - [Release notes](https://github.com/actions/configure-pages/releases) - [Commits](actions/configure-pages@1f0c5cd...983d773) Updates `actions/deploy-pages` from 4.0.4 to 4.0.5 - [Release notes](https://github.com/actions/deploy-pages/releases) - [Commits](actions/deploy-pages@decdde0...d6db901) Updates `softprops/action-gh-release` from 2.0.4 to 2.0.5 - [Release notes](https://github.com/softprops/action-gh-release/releases) - [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md) - [Commits](softprops/action-gh-release@9d7c94c...69320db) Updates `ossf/scorecard-action` from 2.3.1 to 2.3.3 - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](ossf/scorecard-action@0864cf1...dc50aa9) Updates `actions/upload-artifact` from 4.3.1 to 4.3.3 - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](actions/upload-artifact@5d5d22a...6546280) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: actions/cache dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: actions/configure-pages dependency-type: direct:production update-type: version-update:semver-major dependency-group: all - dependency-name: actions/deploy-pages dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: softprops/action-gh-release dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all ... Signed-off-by: dependabot[bot] <[email protected]>
dependabot
bot
added
dependencies
Pull requests that update a dependency file
github_actions
Pull requests that update GitHub Actions code
labels
May 27, 2024
Superseded by #192. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
dependencies
Pull requests that update a dependency file
github_actions
Pull requests that update GitHub Actions code
0 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the all group with 11 updates in the / directory:
2.7.0
2.8.0
4.1.2
4.1.6
4.0.1
4.0.2
5.0.0
5.0.1
4.1.0
4.4.1
3.24.8
3.25.6
4.0.0
5.0.0
4.0.4
4.0.5
2.0.4
2.0.5
2.3.1
2.3.3
4.3.1
4.3.3
Updates
step-security/harden-runner
from 2.7.0 to 2.8.0Release notes
Sourced from step-security/harden-runner's releases.
Commits
f086349
Merge pull request #416 from step-security/rc-8b9c325d
Update image808a771
Add info about file and process events7171429
Update agent9ff9d14
Merge pull request #406 from step-security/dependabot/github_actions/step-sec...ac5fa01
Bump step-security/harden-runner from 2.7.0 to 2.7.1a4aa98b
Release v2.7.1 (#397)6c3b1c9
Merge pull request #379 from step-security/dependabot/github_actions/step-sec...3498091
Bump step-security/harden-runner from 2.6.1 to 2.7.063a88e2
Merge pull request #378 from step-security/update-readme3Updates
actions/checkout
from 4.1.2 to 4.1.6Release notes
Sourced from actions/checkout's releases.
Changelog
Sourced from actions/checkout's changelog.
... (truncated)
Commits
a5ac7e5
Update for 4.1.6 release (#1733)24ed1a3
Check platform for extension (#1732)44c2b7a
README: Suggestuser.email
to be `41898282+github-actions[bot]@users
.norepl...8459bc0
Bump actions/upload-artifact from 2 to 4 (#1695)3f603f6
Bump actions/setup-node from 1 to 4 (#1696)fd084cd
Bump github/codeql-action from 2 to 3 (#1694)9c1e94e
Update NPM dependencies (#1703)0ad4b8f
Prep Release v4.1.4 (#1704)43045ae
Disableextensions.worktreeConfig
when disablingsparse-checkout
(#1692)37b0821
Bump the minor-actions-dependencies group with 2 updates (#1693)Updates
actions/cache
from 4.0.1 to 4.0.2Release notes
Sourced from actions/cache's releases.
Changelog
Sourced from actions/cache's changelog.
... (truncated)
Commits
0c45773
Merge pull request #1327 from cdce8p/fix-fail-on-cache-miss8a55f83
Add test case for process exit3884cac
Bump versione29dad3
Fix fail-on-cache-miss not workingUpdates
actions/setup-go
from 5.0.0 to 5.0.1Release notes
Sourced from actions/setup-go's releases.
Commits
cdcb360
Remove the description of the old go.mod specification (#458)99176a8
Update README.md with V5 release notes (#459)be1aa11
Bump undici from 5.28.2 to 5.28.3 (#465)6c1fd22
docs: bumpactions/setup-go
to v5 (#449)Updates
codecov/codecov-action
from 4.1.0 to 4.4.1Release notes
Sourced from codecov/codecov-action's releases.
... (truncated)
Commits
125fc84
chore(release): 4.4.1 (#1441)c9dbf6a
fix: isPullRequestFromFork returns false for any PR (#1437)59fc46f
build(deps): bump actions/checkout from 4.1.5 to 4.1.6 (#1438)3889fdd
build(deps): bump github/codeql-action from 3.25.4 to 3.25.5 (#1439)d42a336
fix: prevent xlarge from running on forks (#1432)fd624e5
build(deps-dev): bump@typescript-eslint/eslint-plugin
from 7.8.0 to 7.9.0 (#...6d79887
chore(release): 4.4.0 (#1430)37364fa
build(deps-dev): bump@typescript-eslint/parser
from 7.8.0 to 7.9.0 (#1428)2791a5c
fix: remove GPG and run on spawn (#1426)b71af43
build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3 (#1420)Updates
github/codeql-action
from 3.24.8 to 3.25.6Changelog
Sourced from github/codeql-action's changelog.
... (truncated)
Commits
9fdb3e4
Merge pull request #2300 from github/update-v3.25.6-63d519c0a00792ab
Update changelog for v3.25.663d519c
Merge pull request #2295 from github/update-bundle/codeql-bundle-v2.17.30d9161c
Merge pull request #2293 from github/henrymercer/update-build-mode-autobuild-...e9e2729
Add changelog notede1ac31
Update default bundle to codeql-bundle-v2.17.3a57c67b
Merge pull request #2286 from github/koesie10/ghec-dr-db-uploadb7ef64e
Merge pull request #2294 from github/dependabot/npm_and_yarn/npm-d3285d5234e54dea2
Update checked-in dependencies3b42294
Bump the npm group across 1 directory with 4 updatesUpdates
actions/configure-pages
from 4.0.0 to 5.0.0Release notes
Sourced from actions/configure-pages's releases.
Commits
983d773
Merge pull request #139 from actions/config-auto-detect9cf6e24
Tweak commentf304bd8
Update distributables215cd51
Attempt to detect existing config files matching the expected basename plus o...e9382ac
Front-load the file extension warning7781abd
Merge pull request #138 from actions/error-utilsfc47e3c
Update distributables9c9f8a2
Update tests to use the Octokit RequestError class9a4705d
Update distributablesf6ded38
Fix syntax error and formattingUpdates
actions/deploy-pages
from 4.0.4 to 4.0.5Release notes
Sourced from actions/deploy-pages's releases.
Commits
d6db901
Merge pull request #324 from actions/error-message-request-id055f425
compile changes5ab929b
Include request id in the error message of an error response3ff795b
Merge pull request #318 from actions/dependabot/npm_and_yarn/non-breaking-cha...f5a2f0d
Update distributables after Dependabot 🤖1364cde
Bump the non-breaking-changes group with 2 updates2ed07f7
Merge pull request #316 from actions/dependabot/npm_and_yarn/non-breaking-cha...d5a892b
Bump the non-breaking-changes group with 1 update05977f5
Merge pull request #314 from actions/dependabot/npm_and_yarn/non-breaking-cha...9414024
Update distributables after Dependabot 🤖Updates
softprops/action-gh-release
from 2.0.4 to 2.0.5Release notes
Sourced from softprops/action-gh-release's releases.
Changelog
Sourced from softprops/action-gh-release's changelog.
... (truncated)
Commits
69320db
update changelog9771ccf
update changelog rebuild dist0a76e42
Fix: error handling (#449)3989e4b
document impl detail72e945e
update changelog40bf9ec
fmt and build998623f
fix: support space in file name (#446)0979303
Fix failure (#447)9b795e5
Update README.md (#432)Updates
ossf/scorecard-action
from 2.3.1 to 2.3.3Release notes
Sourced from ossf/scorecard-action's releases.
Commits
dc50aa9
🌱 Bump docker tag for v2.3.3 release (#1368)8ff5700
🌱 Bump github.com/ossf/scorecard/v5 from v5.0.0-rc2 to v5.0.0-rc2.0....8ba5e73
update api links to new scorecard.dev site (#1376)92ddde3
Bump github.com/ossf/scorecard/v5 from v5.0.0-rc1 to v5.0.0-rc2 (#1374)6c55905
🌱 Bump golang.org/x/net from 0.24.0 to 0.25.0 (#1373)09bb953
🌱 Bump distroless/base in the docker-images group (#1372)1511e13
🌱 Bump the github-actions group across 1 directory with 6 updates (#...df66cd8
🌱 Bump the docker-images group with 2 updates (#1370)fad9a3c
🌱 Bump distroless/base in the docker-images group (#1364)1e01a30
🌱 Bump the github-actions group with 3 updates (#1365)Updates
actions/upload-artifact
from 4.3.1 to 4.3.3Release notes
Sourced from actions/upload-artifact's releases.