chore(deps): bump the all-dependencies group with 2 updates #500

dependabot · 2025-05-01T21:31:18Z

Bumps the all-dependencies group with 2 updates: gittools/actions and docker/build-push-action.

Updates gittools/actions from 3.0.0 to 3.2.1

Release notes

Sourced from gittools/actions's releases.

v3.2.1

As part of this release we had 50 commits which resulted in 1 issue being closed.

Improvements

!1586 updates GitVersion and GitReleaseManager versions

SHA256 Hashes of the release artifacts

1d446034a454176807f7c3846983ec4b8a4efef0e2e10cabef19f7ea1f428e33 - gittools.gittools-3.2.1.25042514.vsix

v3.2.0

As part of this release we had 147 commits which resulted in 6 issues being closed.

Bugs

[#1400](GitTools/actions#1400) [ISSUE]: Azure DevOps task v3.1.1 fails with 'Overwriting readonly variable is not permitted'

[#1515](GitTools/actions#1515) [ISSUE]: gitVersion execute task not immediately available after gitVersion setup task

!1554 Normalizes target path in dotnet tool

Improvements

!1494 feat: update project files implemented

[#1497](GitTools/actions#1497) [ISSUE]: GRM Create does not respect spaces in name

!1550 Update GitVersion dependency range to >=5.12.0 <7.0.0

SHA256 Hashes of the release artifacts

8f4a788fc9184ab4da1c63458829c537af4230ca6a29fa11c2d4fe3fd2a41e00 - gittools.gittools-3.2.0.25040201.vsix

v3.1.11

As part of this release we had 4 commits which resulted in 1 issue being closed.

Improvements

!1468 Refactor workflows to add and utilize trigger-action-test.

SHA256 Hashes of the release artifacts

d828cba1736a4bca7ca565e84c40b55ac5fdc282c05492492d27490a498fb47f - gittools.gittools-3.1.11.25012214.vsix

v3.1.10

As part of this release we had 2 commits which resulted in 4 issues being closed.

Improvements

!1459 Refactor Azure Marketplace publishing into a reusable action

!1460 Update oldTag retrieval in release workflow

!1464 Add separate workflow for prerelease builds

!1466 include vsix asset when releasing

SHA256 Hashes of the release artifacts

6a2f5929680609345c89e7672439cc9ea1ff1c93ebcd169d74f4ec083c49fae2 - gittools.gittools-3.1.10.25012206.vsix

... (truncated)

Commits

51d3256 Corrects grammar in comments
ea98c3f Merge pull request #1586 from arturcic/feature/gittools-updates
a19e66c updates GitVersion and GitReleaseManager versions
fec46d0 Merge pull request #1585 from GitTools/dependabot/npm_and_yarn/types-e1d5f2185b
5289a23 (npm): Bump @types/node from 22.14.1 to 22.15.1 in the types group
15146d8 Merge pull request #1584 from GitTools/dependabot/npm_and_yarn/glob-11.0.2
81a90f2 (npm): Bump glob from 11.0.1 to 11.0.2
c58df4d Merge pull request #1583 from GitTools/dependabot/npm_and_yarn/vite-9e12ea7c2e
a85c189 (npm): Bump vite from 6.3.2 to 6.3.3 in the vite group
e447688 Merge pull request #1582 from GitTools/dependabot/npm_and_yarn/eslint-c86b869d29
Additional commits viewable in compare view

Updates docker/build-push-action from 5 to 6

Release notes

Sourced from docker/build-push-action's releases.

v6.0.0

Export build record and generate build summary by @crazy-max in docker/build-push-action#1120

Bump @docker/actions-toolkit from 0.24.0 to 0.26.0 in docker/build-push-action#1132 docker/build-push-action#1136 docker/build-push-action#1138

Bump braces from 3.0.2 to 3.0.3 in docker/build-push-action#1137

[!NOTE] This major release adds support for generating Build summary and exporting build record for your build. You can disable this feature by setting DOCKER_BUILD_SUMMARY: false environment variable in your workflow.

Full Changelog: docker/build-push-action@v5.4.0...v6.0.0

v5.4.0

Show builder information before building by @crazy-max in docker/build-push-action#1128

Handle attestations correctly with provenance and sbom inputs by @crazy-max in docker/build-push-action#1086

Bump @docker/actions-toolkit from 0.19.0 to 0.24.0 in docker/build-push-action#1088 docker/build-push-action#1105 docker/build-push-action#1121 docker/build-push-action#1127

Bump undici from 5.28.3 to 5.28.4 in docker/build-push-action#1090

Full Changelog: docker/build-push-action@v5.3.0...v5.4.0

v5.3.0

Bump @docker/actions-toolkit from 0.18.0 to 0.19.0 in docker/build-push-action#1080

Full Changelog: docker/build-push-action@v5.2.0...v5.3.0

v5.2.0

Disable quotes detection for outputs input by @crazy-max in docker/build-push-action#1074

Warn about ignored inputs by @favonia in docker/build-push-action#1019

Bump @docker/actions-toolkit from 0.14.0 to 0.18.0 in docker/build-push-action#1070

Bump undici from 5.26.3 to 5.28.3 in docker/build-push-action#1057

Full Changelog: docker/build-push-action@v5.1.0...v5.2.0

v5.1.0

Add annotations input by @crazy-max in docker/build-push-action#992

Add secret-envs input by @elias-lundgren in docker/build-push-action#980

Bump @babel/traverse from 7.17.3 to 7.23.2 in docker/build-push-action#991

Bump @docker/actions-toolkit from 0.13.0-rc.1 to 0.14.0 in docker/build-push-action#990 docker/build-push-action#1006

Full Changelog: docker/build-push-action@v5.0.0...v5.1.0

Commits

14487ce Merge pull request #1343 from crazy-max/fix-no-default-attest
0ec9126 Merge pull request #1366 from crazy-max/pr-assign-author
b749522 pr-assign-author workflow
c566248 Merge pull request #1363 from crazy-max/fix-codecov
13275dd ci: fix missing source for codecov
67dc78b Merge pull request #1361 from mschoettle/patch-1
0760504 docs: add validating build configuration example
1c198f4 chore: update generated content
288d9e2 handle no default attestations env var
88844b9 Merge pull request #1353 from crazy-max/summary-secret-keys
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the all-dependencies group with 2 updates: [gittools/actions](https://github.com/gittools/actions) and [docker/build-push-action](https://github.com/docker/build-push-action). Updates `gittools/actions` from 3.0.0 to 3.2.1 - [Release notes](https://github.com/gittools/actions/releases) - [Changelog](https://github.com/GitTools/actions/blob/main/GitReleaseManager.yml) - [Commits](GitTools/actions@v3.0.0...v3.2.1) Updates `docker/build-push-action` from 5 to 6 - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](docker/build-push-action@v5...v6) --- updated-dependencies: - dependency-name: gittools/actions dependency-version: 3.2.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-dependencies - dependency-name: docker/build-push-action dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-dependencies ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added the area-dependencies label May 1, 2025

winromulus enabled auto-merge (squash) May 1, 2025 21:31

winromulus approved these changes May 1, 2025

View reviewed changes

winromulus merged commit 2370ed7 into main May 1, 2025
3 checks passed

winromulus deleted the dependabot/github_actions/all-dependencies-7d95441a94 branch May 1, 2025 21:31

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore(deps): bump the all-dependencies group with 2 updates #500

chore(deps): bump the all-dependencies group with 2 updates #500

Uh oh!

dependabot bot commented on behalf of github May 1, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Milestone

Development

Uh oh!

1 participant

chore(deps): bump the all-dependencies group with 2 updates #500

chore(deps): bump the all-dependencies group with 2 updates #500

Uh oh!

Conversation

dependabot bot commented on behalf of github May 1, 2025

v3.2.1

SHA256 Hashes of the release artifacts

v3.2.0

SHA256 Hashes of the release artifacts

v3.1.11

SHA256 Hashes of the release artifacts

v3.1.10

SHA256 Hashes of the release artifacts

v6.0.0

v5.4.0

v5.3.0

v5.2.0

v5.1.0

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Milestone

Development

Uh oh!

1 participant