getsentry
chore(deps): bump actions/dependency-review-action from 4.0.0 to 4.2.5
Bumps actions/dependency-review-action from 4.0.0 to 4.2.5.
Release notes
Sourced from actions/dependency-review-action's releases.
4.2.5
What's Changed
- Fixed a bug where some configuration options in external files were not being properly picked up -- actions/dependency-review-action#722
- Bump eslint from 8.56.0 to 8.57.0
Full Changelog: https://github.com/actions/dependency-review-action/compare/v4.2.4...v4.2.5
v4.2.4
What's Changed
Fixed a bug in the output of OpenSSF cards for GitHub Actions.
New Contributors
@sporkmongermade their first contribution in actions/dependency-review-action#721Full Changelog: https://github.com/actions/dependency-review-action/compare/v4.2.3...v4.2.4
4.2.3
What's Changed
- Set comment as output by
@jsorefin actions/dependency-review-action#698- Add support for calculating OpenSSF Scorecards by
@jhutchings1in actions/dependency-review-action#709- Add outputs for the changes data by
@laughedelicin actions/dependency-review-action#707New Contributors
@jhutchings1made their first contribution in actions/dependency-review-action#709@laughedelicmade their first contribution in actions/dependency-review-action#707Full Changelog: https://github.com/actions/dependency-review-action/compare/v4.1.3...v4.2.3
4.1.3
Fixes a bug in 4.1.2 that would introduce comments in every pull request, regardless of the user's configuration (see actions/dependency-review-action#697).
Full Changelog: https://github.com/actions/dependency-review-action/compare/v4.1.2...v4.1.3
4.1.2
What's Changed
- Expose dependency comment content by
@jsorefin actions/dependency-review-action#696Full Changelog: https://github.com/actions/dependency-review-action/compare/v4.1.1...v4.1.2
4.1.1
What's Changed
- Bump
undicito fix GHSA-wqq4-5wpv-mx2g- Bump
@types/nodefrom 20.11.17 to 20.11.19 by@dependabotin actions/dependency-review-action#693Full Changelog: https://github.com/actions/dependency-review-action/compare/v4.1.0...v4.1.1
4.1.0
... (truncated)
Commits
5bbc3babumping versionc59184aMerge pull request #722 from actions/remove-warn-default54c0657Merge pull request #728 from actions/dependabot/npm_and_yarn/eslint-8.57.021941b5Bump eslint from 8.56.0 to 8.57.0733dd5dbumping to 4.2.49093495Merge pull request #725 from actions/issue-71835b83b4Fix prettier issuese057056Add packaged code updated684d03Add trailing slash to tests2b0aaf1Fix extra slash issue- Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
-
@dependabot rebasewill rebase this PR -
@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it -
@dependabot mergewill merge this PR after your CI passes on it -
@dependabot squash and mergewill squash and merge this PR after your CI passes on it -
@dependabot cancel mergewill cancel a previously requested merge and block automerging -
@dependabot reopenwill reopen this PR if it is closed -
@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually -
@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency -
@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "Published by a pub.dev verified publisher"){kind=small}
The latest updates on your projects. Learn more about Vercel for Git ↗︎
| Name | Status | Preview | Comments | Updated (UTC) |
|---|---|---|---|---|
| sentry-docs | ✅ Ready (Inspect) | Visit Preview | 💬 Add feedback | Mar 26, 2024 8:27pm |
![vercel[bot] avatar](https://avatars.githubusercontent.com/in/8329?v=4 "Published by a pub.dev verified publisher"){kind=small}
Bundle Report
Changes will decrease total bundle size by 9 bytes :arrow_down:
| Bundle name | Size | Change |
|---|---|---|
| sentry-docs-server | 6.11MB | 0 bytes |
| sentry-docs-edge-server | 618.05kB | 3 bytes :arrow_down: |
| sentry-docs-client | 5.52MB | 6 bytes :arrow_down: |
![codecov[bot] avatar](https://avatars.githubusercontent.com/in/254?v=4 "Published by a pub.dev verified publisher"){kind=small}
This pull request has gone three weeks without activity. In another week, I will close it.
But! If you comment or otherwise update it, I will reset the clock, and if you add the label WIP, I will leave it alone unless WIP is removed ... forever!
"A weed is but an unloved flower." ― Ella Wheeler Wilcox 🥀
![getsantry[bot] avatar](https://avatars.githubusercontent.com/in/66573?v=4 "Published by a pub.dev verified publisher"){kind=small}
OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.
If you change your mind, just re-open this PR and I'll resolve any conflicts on it.