timoni
timoni copied to clipboard
build(deps): bump the ci group across 1 directory with 5 updates
Bumps the ci group with 5 updates in the / directory:
Package | From | To |
---|---|---|
actions/checkout | 4.1.3 |
4.1.5 |
actions/setup-go | 5.0.0 |
5.0.1 |
helm/kind-action | 1.9.0 |
1.10.0 |
anchore/sbom-action | 0.15.10 |
0.15.11 |
goreleaser/goreleaser-action | 5.0.0 |
5.1.0 |
Updates actions/checkout
from 4.1.3 to 4.1.5
Release notes
Sourced from actions/checkout's releases.
v4.1.5
What's Changed
- Update NPM dependencies by
@cory-miller
in actions/checkout#1703- Bump github/codeql-action from 2 to 3 by
@dependabot
in actions/checkout#1694- Bump actions/setup-node from 1 to 4 by
@dependabot
in actions/checkout#1696- Bump actions/upload-artifact from 2 to 4 by
@dependabot
in actions/checkout#1695- README: Suggest
user.email
to be41898282+github-actions[bot]@users.noreply.github.com
by@cory-miller
in actions/checkout#1707Full Changelog: https://github.com/actions/checkout/compare/v4.1.4...v4.1.5
v4.1.4
What's Changed
- Disable
extensions.worktreeConfig
when disablingsparse-checkout
by@jww3
in actions/checkout#1692- Add dependabot config by
@cory-miller
in actions/checkout#1688- Bump word-wrap from 1.2.3 to 1.2.5 by
@dependabot
in actions/checkout#1643- Bump the minor-actions-dependencies group with 2 updates by
@dependabot
in actions/checkout#1693Full Changelog: https://github.com/actions/checkout/compare/v4.1.3...v4.1.4
Changelog
Sourced from actions/checkout's changelog.
Changelog
v4.1.4
- Disable
extensions.worktreeConfig
when disablingsparse-checkout
by@jww3
in actions/checkout#1692- Add dependabot config by
@cory-miller
in actions/checkout#1688- Bump the minor-actions-dependencies group with 2 updates by
@dependabot
in actions/checkout#1693- Bump word-wrap from 1.2.3 to 1.2.5 by
@dependabot
in actions/checkout#1643v4.1.3
- Check git version before attempting to disable
sparse-checkout
by@jww3
in actions/checkout#1656- Add SSH user parameter by
@cory-miller
in actions/checkout#1685- Update
actions/checkout
version inupdate-main-version.yml
by@jww3
in actions/checkout#1650v4.1.2
- Fix: Disable sparse checkout whenever
sparse-checkout
option is not present@dscho
in actions/checkout#1598v4.1.1
- Correct link to GitHub Docs by
@peterbe
in actions/checkout#1511- Link to release page from what's new section by
@cory-miller
in actions/checkout#1514v4.1.0
v4.0.0
v3.6.0
- Fix: Mark test scripts with Bash'isms to be run via Bash
- Add option to fetch tags even if fetch-depth > 0
v3.5.3
- Fix: Checkout fail in self-hosted runners when faulty submodule are checked-in
- Fix typos found by codespell
- Add support for sparse checkouts
v3.5.2
v3.5.1
v3.5.0
v3.4.0
... (truncated)
Commits
44c2b7a
README: Suggestuser.email
to be `41898282+github-actions[bot]@users
.norepl...8459bc0
Bump actions/upload-artifact from 2 to 4 (#1695)3f603f6
Bump actions/setup-node from 1 to 4 (#1696)fd084cd
Bump github/codeql-action from 2 to 3 (#1694)9c1e94e
Update NPM dependencies (#1703)0ad4b8f
Prep Release v4.1.4 (#1704)43045ae
Disableextensions.worktreeConfig
when disablingsparse-checkout
(#1692)37b0821
Bump the minor-actions-dependencies group with 2 updates (#1693)9839dc1
Add dependabot config (#1688)9b4c13b
Bump word-wrap from 1.2.3 to 1.2.5 (#1643)- See full diff in compare view
Updates actions/setup-go
from 5.0.0 to 5.0.1
Release notes
Sourced from actions/setup-go's releases.
v5.0.1
What's Changed
- Bump undici from 5.28.2 to 5.28.3 and dependencies upgrade by
@dependabot
,@HarithaVattikuti
in actions/setup-go#465- Update documentation with latest V5 release notes by
@ab
in actions/setup-go#459- Update version documentation by
@178inaba
in actions/setup-go#458- Documentation update of
actions/setup-go
to v5 by@chenrui333
in actions/setup-go#449New Contributors
@ab
made their first contribution in actions/setup-go#459Full Changelog: https://github.com/actions/setup-go/compare/v5.0.0...v5.0.1
Commits
Updates helm/kind-action
from 1.9.0 to 1.10.0
Release notes
Sourced from helm/kind-action's releases.
v1.10.0
Requirements
We changed to use
wget
instead ofcurl
What's Changed
- Update kind to release v0.21.0 by
@cpanato
in helm/kind-action#104- Bump actions/checkout from 4.1.1 to 4.1.2 by
@dependabot
in helm/kind-action#106- Bump actions/checkout from 4.1.2 to 4.1.3 by
@dependabot
in helm/kind-action#108- bump kind to 0.22.0 / kubectl and general housekeeping by
@cpanato
in helm/kind-action#107- Bump actions/checkout from 4.1.2 to 4.1.3 in the actions group by
@dependabot
in helm/kind-action#109Full Changelog: https://github.com/helm/kind-action/compare/v1.9.0...v1.10.0
Commits
0025e74
Bump actions/checkout from 4.1.2 to 4.1.3 in the actions group (#109)2a7d25f
bump kind to 0.22.0 / kubectl and general housekeeping (#107)d821386
Bump actions/checkout from 4.1.2 to 4.1.3 (#108)e89fbc4
Bump actions/checkout from 4.1.1 to 4.1.2 (#106)8300bd0
Update kind to release v0.21.0 (#104)- See full diff in compare view
Updates anchore/sbom-action
from 0.15.10 to 0.15.11
Release notes
Sourced from anchore/sbom-action's releases.
v0.15.11
Changes in v0.15.11
- chore(deps): update Syft to v1.3.0 (#456) [anchore-actions-token-generator]
- chore: remove outdated snapshot workflow (#457) [spiffcs]
- fix: don't pass in a separate env. This makes it impossible to pass env vars via the action context to syft. (#455) [iNoahNothing]
Commits
Updates goreleaser/goreleaser-action
from 5.0.0 to 5.1.0
Release notes
Sourced from goreleaser/goreleaser-action's releases.
v5.1.0
Important
This version changes the default behavior of
latest
to~> v1
.The next major of this action (v6), will change this to
~> v2
, and will be launched together with GoReleaser v2.What's Changed
- docs: bump actions to latest major by
@crazy-max
in goreleaser/goreleaser-action#435- chore(deps): bump docker/bake-action from 3 to 4 by
@dependabot
in goreleaser/goreleaser-action#436- chore(deps): bump codecov/codecov-action from 3 to 4 by
@dependabot
in goreleaser/goreleaser-action#437- chore(deps): bump actions/setup-go from 4 to 5 by
@dependabot
in goreleaser/goreleaser-action#443- chore(deps): bump actions/upload-artifact from 3 to 4 by
@dependabot
in goreleaser/goreleaser-action#444- Delete .kodiak.toml by
@vedantmgoyal9
in goreleaser/goreleaser-action#446- chore(deps): bump codecov/codecov-action from 3 to 4 by
@dependabot
in goreleaser/goreleaser-action#448- chore(deps): bump ip from 2.0.0 to 2.0.1 by
@dependabot
in goreleaser/goreleaser-action#450- Upgrade setup-go action version in README by
@kishaningithub
in goreleaser/goreleaser-action#455- chore(deps): bump tar from 6.1.14 to 6.2.1 by
@dependabot
in goreleaser/goreleaser-action#456- chore: use corepack to install yarn by
@crazy-max
in goreleaser/goreleaser-action#458- feat: lock this major version of the action to use '~> v1' as 'latest' by
@caarlos0
in goreleaser/goreleaser-action#461- chore(deps): bump semver from 7.6.0 to 7.6.2 by
@dependabot
in goreleaser/goreleaser-action#462- chore(deps): bump
@actions/http-client
from 2.2.0 to 2.2.1 by@dependabot
in goreleaser/goreleaser-action#451New Contributors
@vedantmgoyal9
made their first contribution in goreleaser/goreleaser-action#446Full Changelog: https://github.com/goreleaser/goreleaser-action/compare/v5.0.0...v5.1.0
Commits
5742e2a
chore: re-generate70ccc5d
chore(deps): bump@actions/http-client
from 2.2.0 to 2.2.1 (#451)d55bec7
chore(deps): bump semver from 7.6.0 to 7.6.2 (#462)f1dbd53
feat: lock this major version of the action to use '~> v1' as 'latest' (#461)2953d07
chore(deps): update http-client62d4b8a
chore: use corepack to install yarn (#458)f09f1a7
chore(deps): bump tar from 6.1.14 to 6.2.1 (#456)9937f9b
Revert "docs: Upgrade setup-go action version in README (#455)"b7f6f16
docs: Upgrade setup-go action version in README (#455)c21f56a
docs: update readme- Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
-
@dependabot rebase
will rebase this PR -
@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it -
@dependabot merge
will merge this PR after your CI passes on it -
@dependabot squash and merge
will squash and merge this PR after your CI passes on it -
@dependabot cancel merge
will cancel a previously requested merge and block automerging -
@dependabot reopen
will reopen this PR if it is closed -
@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually -
@dependabot show <dependency name> ignore conditions
will show all of the ignore conditions of the specified dependency -
@dependabot ignore <dependency name> major version
will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) -
@dependabot ignore <dependency name> minor version
will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) -
@dependabot ignore <dependency name>
will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) -
@dependabot unignore <dependency name>
will remove all of the ignore conditions of the specified dependency -
@dependabot unignore <dependency name> <ignore condition>
will remove the ignore condition of the specified dependency and ignore conditions