Skip to content

⬆️ Bump the dependencies group with 2 updates#162

Merged
7rikazhexde merged 1 commit intomainfrom
dependabot/github_actions/dependencies-b020acf514
Mar 16, 2026
Merged

⬆️ Bump the dependencies group with 2 updates#162
7rikazhexde merged 1 commit intomainfrom
dependabot/github_actions/dependencies-b020acf514

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Mar 16, 2026

Bumps the dependencies group with 2 updates: MishaKav/pytest-coverage-comment and softprops/action-gh-release.

Updates MishaKav/pytest-coverage-comment from 1.6.0 to 1.7.1

Release notes

Sourced from MishaKav/pytest-coverage-comment's releases.

v1.7.1

What's Changed

  • fix 5 security vulnerabilities in undici (6.23.0 → 6.24.1) (#260)
  • bump dev dependencies

Full Changelog: MishaKav/pytest-coverage-comment@v1.7.0...v1.7.1

v1.7.0

What's Changed

  • enable immutable releases for supply chain security (#256)
  • bump flatted from 3.3.3 to 3.4.1 to fix security vulnerability

Note: No changes to action inputs, outputs, or behavior. This improves release security following GitHub's immutable releases feature.

Full Changelog: MishaKav/pytest-coverage-comment@v1.6.0...v1.7.0

Changelog

Sourced from MishaKav/pytest-coverage-comment's changelog.

Pytest Coverage Comment 1.7.1

Release Date: 2026-03-14

Changes

  • fix 5 security vulnerabilities in undici (6.23.0 → 6.24.1) (#260)
  • bump dev dependencies

Pytest Coverage Comment 1.7.0

Release Date: 2026-03-13

Changes

  • enable immutable releases for supply chain security (#256)
  • bump flatted from 3.3.3 to 3.4.1 to fix security vulnerability

Note: No changes to action inputs, outputs, or behavior. This improves release security following GitHub's immutable releases feature.

Commits
  • 2872928 Remove publish-immutable-actions workflow, bump deps, fix vulnerabilities (#2...
  • 6b219ea Enable immutable releases for supply chain security (#256) (#258)
  • See full diff in compare view

Updates softprops/action-gh-release from 2.5.0 to 2.6.0

Release notes

Sourced from softprops/action-gh-release's releases.

v2.6.0

2.6.0 is a minor release centered on previous_tag support for generate_release_notes, which lets workflows pin GitHub's comparison base explicitly instead of relying on the default range. It also includes the recent concurrent asset upload recovery fix, a working_directory docs sync, a checked-bundle freshness guard for maintainers, and clearer immutable-prerelease guidance where GitHub platform behavior imposes constraints on how prerelease asset uploads can be published.

If you still hit an issue after upgrading, please open a report with the bug template and include a minimal repro or sanitized workflow snippet where possible.

What's Changed

Exciting New Features 🎉

Bug fixes 🐛

Other Changes 🔄

v2.5.3

2.5.3 is a patch release focused on the remaining path-handling and release-selection bugs uncovered after 2.5.2. It fixes [#639](https://github.com/softprops/action-gh-release/issues/639), [#571](https://github.com/softprops/action-gh-release/issues/571), [#280](https://github.com/softprops/action-gh-release/issues/280), [#614](https://github.com/softprops/action-gh-release/issues/614), [#311](https://github.com/softprops/action-gh-release/issues/311), [#403](https://github.com/softprops/action-gh-release/issues/403), and [#368](https://github.com/softprops/action-gh-release/issues/368). It also adds documentation clarifications for [#541](https://github.com/softprops/action-gh-release/issues/541), [#645](https://github.com/softprops/action-gh-release/issues/645), [#542](https://github.com/softprops/action-gh-release/issues/542), [#393](https://github.com/softprops/action-gh-release/issues/393), and [#411](https://github.com/softprops/action-gh-release/issues/411), where the current behavior is either usage-sensitive or constrained by GitHub platform limits rather than an action-side runtime bug.

If you still hit an issue after upgrading, please open a report with the bug template and include a minimal repro or sanitized workflow snippet where possible.

What's Changed

Bug fixes 🐛

Other Changes 🔄

... (truncated)

Changelog

Sourced from softprops/action-gh-release's changelog.

2.6.0

2.6.0 is a minor release centered on previous_tag support for generate_release_notes, which lets workflows pin GitHub's comparison base explicitly instead of relying on the default range. It also includes the recent concurrent asset upload recovery fix, a working_directory docs sync, a checked-bundle freshness guard for maintainers, and clearer immutable-prerelease guidance where GitHub platform behavior imposes constraints on how prerelease asset uploads can be published.

If you still hit an issue after upgrading, please open a report with the bug template and include a minimal repro or sanitized workflow snippet where possible.

What's Changed

Exciting New Features 🎉

Bug fixes 🐛

Other Changes 🔄

2.5.3

2.5.3 is a patch release focused on the remaining path-handling and release-selection bugs uncovered after 2.5.2. It fixes [#639](https://github.com/softprops/action-gh-release/issues/639), [#571](https://github.com/softprops/action-gh-release/issues/571), [#280](https://github.com/softprops/action-gh-release/issues/280), [#614](https://github.com/softprops/action-gh-release/issues/614), [#311](https://github.com/softprops/action-gh-release/issues/311), [#403](https://github.com/softprops/action-gh-release/issues/403), and [#368](https://github.com/softprops/action-gh-release/issues/368). It also adds documentation clarifications for [#541](https://github.com/softprops/action-gh-release/issues/541), [#645](https://github.com/softprops/action-gh-release/issues/645), [#542](https://github.com/softprops/action-gh-release/issues/542), [#393](https://github.com/softprops/action-gh-release/issues/393), and [#411](https://github.com/softprops/action-gh-release/issues/411), where the current behavior is either usage-sensitive or constrained by GitHub platform limits rather than an action-side runtime bug.

If you still hit an issue after upgrading, please open a report with the bug template and include a minimal repro or sanitized workflow snippet where possible.

What's Changed

Bug fixes 🐛

Other Changes 🔄

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
⬆️ Bump the dependencies group with 2 updates
cf228f9 
Bumps the dependencies group with 2 updates: [MishaKav/pytest-coverage-comment](https://github.com/mishakav/pytest-coverage-comment) and [softprops/action-gh-release](https://github.com/softprops/action-gh-release).


Updates `MishaKav/pytest-coverage-comment` from 1.6.0 to 1.7.1
- [Release notes](https://github.com/mishakav/pytest-coverage-comment/releases)
- [Changelog](https://github.com/MishaKav/pytest-coverage-comment/blob/main/CHANGELOG.md)
- [Commits](MishaKav/pytest-coverage-comment@v1.6.0...v1.7.1)

Updates `softprops/action-gh-release` from 2.5.0 to 2.6.0
- [Release notes](https://github.com/softprops/action-gh-release/releases)
- [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md)
- [Commits](softprops/action-gh-release@v2.5.0...v2.6.0)

---
updated-dependencies:
- dependency-name: MishaKav/pytest-coverage-comment
  dependency-version: 1.7.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: softprops/action-gh-release
  dependency-version: 2.6.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Mar 16, 2026
@7rikazhexde
Copy link
Copy Markdown
Owner

7rikazhexde commented Mar 16, 2026

coverage

Coverage Report (macos-latest / Python 3.12)
FileStmtsMissCoverMissing
__init__.py460100% 
debug_logger.py260100% 
gist_codeblock.py1130100% 
link_card.py880100% 
x_twitter_card.py300100% 
TOTAL3030100% 

Pytest Result Summary (os: macos-latest / python-version: 3.12)

Tests Skipped Failures Errors Time
62 0 💤 0 ❌ 0 🔥 1.057s ⏱️

@7rikazhexde
Copy link
Copy Markdown
Owner

7rikazhexde commented Mar 16, 2026

coverage

Coverage Report (macos-latest / Python 3.13)
FileStmtsMissCoverMissing
__init__.py460100% 
debug_logger.py260100% 
gist_codeblock.py1130100% 
link_card.py880100% 
x_twitter_card.py300100% 
TOTAL3030100% 

Pytest Result Summary (os: macos-latest / python-version: 3.13)

Tests Skipped Failures Errors Time
62 0 💤 0 ❌ 0 🔥 0.928s ⏱️

@7rikazhexde
Copy link
Copy Markdown
Owner

7rikazhexde commented Mar 16, 2026

coverage

Coverage Report (macos-latest / Python 3.11)
FileStmtsMissCoverMissing
__init__.py460100% 
debug_logger.py260100% 
gist_codeblock.py1130100% 
link_card.py880100% 
x_twitter_card.py300100% 
TOTAL3030100% 

Pytest Result Summary (os: macos-latest / python-version: 3.11)

Tests Skipped Failures Errors Time
62 0 💤 0 ❌ 0 🔥 0.841s ⏱️

@7rikazhexde
Copy link
Copy Markdown
Owner

7rikazhexde commented Mar 16, 2026

coverage

Coverage Report (ubuntu-latest / Python 3.10)
FileStmtsMissCoverMissing
__init__.py460100% 
debug_logger.py260100% 
gist_codeblock.py1130100% 
link_card.py880100% 
x_twitter_card.py300100% 
TOTAL3030100% 

Pytest Result Summary (os: ubuntu-latest / python-version: 3.10)

Tests Skipped Failures Errors Time
62 0 💤 0 ❌ 0 🔥 1.145s ⏱️

@7rikazhexde
Copy link
Copy Markdown
Owner

7rikazhexde commented Mar 16, 2026

coverage

Coverage Report (ubuntu-latest / Python 3.12)
FileStmtsMissCoverMissing
__init__.py460100% 
debug_logger.py260100% 
gist_codeblock.py1130100% 
link_card.py880100% 
x_twitter_card.py300100% 
TOTAL3030100% 

Pytest Result Summary (os: ubuntu-latest / python-version: 3.12)

Tests Skipped Failures Errors Time
62 0 💤 0 ❌ 0 🔥 1.318s ⏱️

@7rikazhexde
Copy link
Copy Markdown
Owner

7rikazhexde commented Mar 16, 2026

coverage

Coverage Report (ubuntu-latest / Python 3.13)
FileStmtsMissCoverMissing
__init__.py460100% 
debug_logger.py260100% 
gist_codeblock.py1130100% 
link_card.py880100% 
x_twitter_card.py300100% 
TOTAL3030100% 

Pytest Result Summary (os: ubuntu-latest / python-version: 3.13)

Tests Skipped Failures Errors Time
62 0 💤 0 ❌ 0 🔥 0.625s ⏱️

@7rikazhexde
Copy link
Copy Markdown
Owner

7rikazhexde commented Mar 16, 2026

coverage

Coverage Report (ubuntu-latest / Python 3.11)
FileStmtsMissCoverMissing
__init__.py460100% 
debug_logger.py260100% 
gist_codeblock.py1130100% 
link_card.py880100% 
x_twitter_card.py300100% 
TOTAL3030100% 

Pytest Result Summary (os: ubuntu-latest / python-version: 3.11)

Tests Skipped Failures Errors Time
62 0 💤 0 ❌ 0 🔥 1.095s ⏱️

@7rikazhexde
Copy link
Copy Markdown
Owner

7rikazhexde commented Mar 16, 2026

coverage

Coverage Report (macos-latest / Python 3.10)
FileStmtsMissCoverMissing
__init__.py460100% 
debug_logger.py260100% 
gist_codeblock.py1130100% 
link_card.py880100% 
x_twitter_card.py300100% 
TOTAL3030100% 

Pytest Result Summary (os: macos-latest / python-version: 3.10)

Tests Skipped Failures Errors Time
62 0 💤 0 ❌ 0 🔥 0.661s ⏱️

@7rikazhexde
Copy link
Copy Markdown
Owner

7rikazhexde commented Mar 16, 2026

coverage

Coverage Report (windows-latest / Python 3.10)
FileStmtsMissCoverMissing
__init__.py460100% 
debug_logger.py260100% 
gist_codeblock.py1130100% 
link_card.py880100% 
x_twitter_card.py300100% 
TOTAL3030100% 

Pytest Result Summary (os: windows-latest / python-version: 3.10)

Tests Skipped Failures Errors Time
62 0 💤 0 ❌ 0 🔥 1.486s ⏱️

@7rikazhexde
Copy link
Copy Markdown
Owner

7rikazhexde commented Mar 16, 2026

coverage

Coverage Report (windows-latest / Python 3.11)
FileStmtsMissCoverMissing
__init__.py460100% 
debug_logger.py260100% 
gist_codeblock.py1130100% 
link_card.py880100% 
x_twitter_card.py300100% 
TOTAL3030100% 

Pytest Result Summary (os: windows-latest / python-version: 3.11)

Tests Skipped Failures Errors Time
62 0 💤 0 ❌ 0 🔥 2.225s ⏱️

@7rikazhexde
Copy link
Copy Markdown
Owner

7rikazhexde commented Mar 16, 2026

coverage

Coverage Report (windows-latest / Python 3.13)
FileStmtsMissCoverMissing
__init__.py460100% 
debug_logger.py260100% 
gist_codeblock.py1130100% 
link_card.py880100% 
x_twitter_card.py300100% 
TOTAL3030100% 

Pytest Result Summary (os: windows-latest / python-version: 3.13)

Tests Skipped Failures Errors Time
62 0 💤 0 ❌ 0 🔥 2.089s ⏱️

@7rikazhexde
Copy link
Copy Markdown
Owner

7rikazhexde commented Mar 16, 2026

coverage

Coverage Report (windows-latest / Python 3.12)
FileStmtsMissCoverMissing
__init__.py460100% 
debug_logger.py260100% 
gist_codeblock.py1130100% 
link_card.py880100% 
x_twitter_card.py300100% 
TOTAL3030100% 

Pytest Result Summary (os: windows-latest / python-version: 3.12)

Tests Skipped Failures Errors Time
62 0 💤 0 ❌ 0 🔥 2.503s ⏱️

@7rikazhexde 7rikazhexde merged commit c02f678 into main Mar 16, 2026
19 checks passed
@dependabot dependabot Bot deleted the dependabot/github_actions/dependencies-b020acf514 branch March 16, 2026 02:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@7rikazhexde