Bump the dependency-updates group with 2 updates

[dependabot[bot]]

Bumps the dependency-updates group with 2 updates: scacap/action-surefire-report and starburstdata/action-testng-report.

Updates scacap/action-surefire-report from 1.6.2 to 1.8.0

Release notes

Sourced from scacap/action-surefire-report's releases.

v1.8.0

What's Changed

• Bump actions/setup-java from 3 to 4 by @​dependabot in ScaCap/action-surefire-report#194
• chore: upgrade to node 20 by @​ghaiszaher in ScaCap/action-surefire-report#185

Full Changelog: https://github.com/ScaCap/action-surefire-report/compare/v1.7.3...v1.8.0

v1.7.3

What's Changed

• Bump nock from 13.3.2 to 13.3.3 by @​dependabot in ScaCap/action-surefire-report#177
• Bump @​octokit/rest from 19.0.11 to 20.0.2 by @​dependabot in ScaCap/action-surefire-report#179
• Bump actions/checkout from 3 to 4 by @​dependabot in ScaCap/action-surefire-report#183
• Revert "Bump @​octokit/rest from 19.0.11 to 20.0.2" by @​ghaiszaher in ScaCap/action-surefire-report#186
• Bump @​babel/traverse from 7.22.8 to 7.23.2 by @​dependabot in ScaCap/action-surefire-report#187
• Bump nock from 13.3.3 to 13.3.7 by @​dependabot in ScaCap/action-surefire-report#189
• Bump eslint from 8.45.0 to 8.52.0 by @​dependabot in ScaCap/action-surefire-report#190
• Bump actions/setup-node from 3 to 4 by @​dependabot in ScaCap/action-surefire-report#191
• Bump @​actions/core from 1.10.0 to 1.10.1 by @​dependabot in ScaCap/action-surefire-report#192
• Bump eslint from 8.52.0 to 8.54.0 by @​dependabot in ScaCap/action-surefire-report#193
• Bump actions/setup-go from 4 to 5 by @​dependabot in ScaCap/action-surefire-report#195
• Bump eslint from 8.54.0 to 8.56.0 by @​dependabot in ScaCap/action-surefire-report#196
• GH-184: ignore incompatible XML reports by @​ghaiszaher in ScaCap/action-surefire-report#198

Full Changelog: https://github.com/ScaCap/action-surefire-report/compare/v1.7.2...v1.7.3

v1.7.2

What's Changed

• Bump word-wrap from 1.2.3 to 1.2.4 by @​dependabot in ScaCap/action-surefire-report#171
• Bump eslint from 8.41.0 to 8.45.0 by @​dependabot in ScaCap/action-surefire-report#169
• Bump @​octokit/plugin-retry from 4.1.6 to 6.0.0 by @​dependabot in ScaCap/action-surefire-report#168
• Bump jest from 29.5.0 to 29.6.1 by @​dependabot in ScaCap/action-surefire-report#172
• Bump nock from 13.3.1 to 13.3.2 by @​dependabot in ScaCap/action-surefire-report#173

Full Changelog: https://github.com/ScaCap/action-surefire-report/compare/v1.7.1...v1.7.2

v1.7.1

What's Changed

• Bump actions/setup-go from 3 to 4 by @​dependabot in ScaCap/action-surefire-report#152
• fix: mention required permissions in documentation by @​ghaiszaher in ScaCap/action-surefire-report#155
• Bump jest-junit from 15.0.0 to 16.0.0 by @​dependabot in ScaCap/action-surefire-report#157
• Bump eslint from 8.33.0 to 8.40.0 by @​dependabot in ScaCap/action-surefire-report#160
• fix: fall back to test case name if message is empty by @​ghaiszaher in ScaCap/action-surefire-report#164

Full Changelog: https://github.com/ScaCap/action-surefire-report/compare/v1.7.0...v1.7.1

v1.7.0

... (truncated)

Commits

• a2911bd chore: upgrade to node 20 (#185)
• c9aa8e4 GHA: Copilot contributor check
• 4960c6f Bump actions/setup-java from 3 to 4 (#194)
• 687f107 GH-184: ignore incompatible XML reports (#198)
• a27556b Bump eslint from 8.54.0 to 8.56.0 (#196)
• 9e99e42 Bump actions/setup-go from 4 to 5 (#195)
• b51833d GHA: Copilot contributor check
• 21d3eaf Bump eslint from 8.52.0 to 8.54.0 (#193)
• 7f7a875 Bump @​actions/core from 1.10.0 to 1.10.1 (#192)
• b733e5f Bump actions/setup-node from 3 to 4 (#191)
• Additional commits viewable in compare view

Updates starburstdata/action-testng-report from 1.0.3 to 1.0.4

Commits

• 01dfdf3 Update depreciated actions versions
• 0d70aa2 Update node version to 16
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[cla-bot[bot]]

Thank you for your pull request and welcome to the Trino community. We require contributors to sign our Contributor License Agreement, and we don't seem to have you on file. Continue to work with us on the review and improvements in this PR, and submit the signed CLA to [email protected]. Photos, scans, or digitally-signed PDF files are all suitable. Processing may take a few days. The CLA needs to be on file before we merge your changes. For more information, see https://github.com/trinodb/cla

[wendigo]

@martint @mosabua can you add dependabot to cla? :)

[martint]

Did it sign it? 😜

[cla-bot[bot]]

Thank you for your pull request and welcome to the Trino community. We require contributors to sign our Contributor License Agreement, and we don't seem to have you on file. Continue to work with us on the review and improvements in this PR, and submit the signed CLA to [email protected]. Photos, scans, or digitally-signed PDF files are all suitable. Processing may take a few days. The CLA needs to be on file before we merge your changes. For more information, see https://github.com/trinodb/cla

[dependabot[bot]]

Looks like these dependencies are updatable in another way, so this is no longer needed.

[nineinchnick]

Did it sign it? 😜

@martint this is a bot which is owned and operated by GitHub. Is there any way we could allow merging such PRs?

Reference: https://docs.github.com/en/code-security/dependabot/working-with-dependabot/about-dependabot-on-github-actions-runners