Skip to content

chore(deps): Bump the gha-deps group with 3 updates#351

Open
dependabot[bot] wants to merge 1 commit intotrunkfrom
dependabot/github_actions/gha-deps-cb98bcc64e
Open

chore(deps): Bump the gha-deps group with 3 updates#351
dependabot[bot] wants to merge 1 commit intotrunkfrom
dependabot/github_actions/gha-deps-cb98bcc64e

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 1, 2026

Bumps the gha-deps group with 3 updates: ruby/setup-ruby, zizmorcore/zizmor-action and aws-actions/configure-aws-credentials.

Updates ruby/setup-ruby from 1.267.0 to 1.288.0

Release notes

Sourced from ruby/setup-ruby's releases.

v1.288.0

What's Changed

Full Changelog: ruby/setup-ruby@v1.287.0...v1.288.0

v1.287.0

What's Changed

New Contributors

Full Changelog: ruby/setup-ruby@v1.286.0...v1.287.0

v1.286.0

What's Changed

Full Changelog: ruby/setup-ruby@v1.285.0...v1.286.0

v1.285.0

What's Changed

Full Changelog: ruby/setup-ruby@v1.284.0...v1.285.0

v1.284.0

What's Changed

Full Changelog: ruby/setup-ruby@v1.283.0...v1.284.0

v1.283.0

What's Changed

Full Changelog: ruby/setup-ruby@v1.282.0...v1.283.0

v1.282.0

What's Changed

... (truncated)

Commits
  • 09a7688 Add jruby-10.0.3.0
  • 67178a2 Improve the automated PR description
  • ede5b72 Shorten workflow name
  • aaddd68 new-versions.rb is no longer used for RubyInstaller releases
  • c7aa9f4 Move check-new-windows-versions.yml workflow from ruby/ruby-builder to ruby/s...
  • 8d27f39 Improve the mise.toml parser to conform to the TOML specification
  • 90be115 Add truffleruby-33.0.1,truffleruby+graalvm-33.0.1
  • e69dcf3 Update all dependencies to latest
  • 9f55308 Convert to String earlier in generate-windows-versions.rb
  • 80740b3 Add new RubyInstaller releases 4.0.1-1 and 3.2.10-1
  • Additional commits viewable in compare view

Updates zizmorcore/zizmor-action from 0.4.1 to 0.5.0

Release notes

Sourced from zizmorcore/zizmor-action's releases.

v0.5.0

What's Changed

New Contributors

Full Changelog: zizmorcore/zizmor-action@v0.4.1...v0.5.0

Commits
  • 0dce257 chore(deps): bump peter-evans/create-pull-request (#88)
  • fb94974 Expose output-file as an output when advanced-security: true (#87)
  • 867562a chore(deps): bump the github-actions group with 2 updates (#85)
  • 7462f07 Bump pins in README (#84)
  • See full diff in compare view

Updates aws-actions/configure-aws-credentials from 5.1.1 to 6.0.0

Release notes

Sourced from aws-actions/configure-aws-credentials's releases.

v6.0.0

6.0.0 (2026-02-04)

⚠ BREAKING CHANGES

  • Update action to use node24 Note this requires GitHub action runner version v2.327.1 or later (#1632) (a7a2c11)

Features

Bug Fixes

  • properly output aws-account-id and authenticated-arn when using role-chaining (#1633) (7ceaf96)
Changelog

Sourced from aws-actions/configure-aws-credentials's changelog.

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

6.0.0 (2026-02-04)

⚠ BREAKING CHANGES

Features

Bug Fixes

  • properly output aws-account-id and authenticated-arn when using role-chaining (#1633) (7ceaf96)

5.1.1 (2025-11-24)

Miscellaneous Chores

5.1.0 (2025-10-06)

Features

Bug Fixes

5.0.0 (2025-09-03)

⚠ BREAKING CHANGES

  • Cleanup input handling. Changes invalid boolean input behavior (see #1445)

Features

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): Bump the gha-deps group with 3 updates
949b0e5 
Bumps the gha-deps group with 3 updates: [ruby/setup-ruby](https://github.com/ruby/setup-ruby), [zizmorcore/zizmor-action](https://github.com/zizmorcore/zizmor-action) and [aws-actions/configure-aws-credentials](https://github.com/aws-actions/configure-aws-credentials).


Updates `ruby/setup-ruby` from 1.267.0 to 1.288.0
- [Release notes](https://github.com/ruby/setup-ruby/releases)
- [Changelog](https://github.com/ruby/setup-ruby/blob/master/release.rb)
- [Commits](ruby/setup-ruby@d5126b9...09a7688)

Updates `zizmorcore/zizmor-action` from 0.4.1 to 0.5.0
- [Release notes](https://github.com/zizmorcore/zizmor-action/releases)
- [Commits](zizmorcore/zizmor-action@1356984...0dce257)

Updates `aws-actions/configure-aws-credentials` from 5.1.1 to 6.0.0
- [Release notes](https://github.com/aws-actions/configure-aws-credentials/releases)
- [Changelog](https://github.com/aws-actions/configure-aws-credentials/blob/main/CHANGELOG.md)
- [Commits](aws-actions/configure-aws-credentials@61815dc...8df5847)

---
updated-dependencies:
- dependency-name: ruby/setup-ruby
  dependency-version: 1.288.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gha-deps
- dependency-name: zizmorcore/zizmor-action
  dependency-version: 0.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gha-deps
- dependency-name: aws-actions/configure-aws-credentials
  dependency-version: 6.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: gha-deps
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the A-deps Area: Source and library dependencies. label Mar 1, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@lopopolo lopopolo

Labels

A-deps Area: Source and library dependencies.

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@lopopolo