Skip to content

build(deps): bump the dev-dependencies group across 1 directory with 10 updates#38

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/github_actions/dev-dependencies-0e2e70408a
Open

build(deps): bump the dev-dependencies group across 1 directory with 10 updates#38
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/github_actions/dev-dependencies-0e2e70408a

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 21, 2024
edited
Loading

Bumps the dev-dependencies group with 10 updates in the / directory:

Package From To
actions/setup-go 4 5
actions/checkout 3 4
github/codeql-action 2 3
actions/setup-python 4 5
actions/github-script 6.4.1 7.0.1
GrantBirki/json-yaml-validate 1.5.0 3.0.0
azure/setup-helm 3.5 4
helm/chart-testing-action 2.4.0 2.6.1
helm/kind-action 1.7.0 1.10.0
helm/chart-releaser-action 1.5.0 1.6.0

Updates actions/setup-go from 4 to 5

Release notes

Sourced from actions/setup-go's releases.

v5.0.0

What's Changed

In scope of this release, we change Nodejs runtime from node16 to node20 (actions/setup-go#421). Moreover, we update some dependencies to the latest versions (actions/setup-go#445).

Besides, this release contains such changes as:

New Contributors

Full Changelog: actions/setup-go@v4...v5.0.0

v4.1.0

What's Changed

In scope of this release, slow installation on Windows was fixed by @​dsame in actions/setup-go#393 and OS version was added to primaryKey for Ubuntu runners to avoid conflicts (actions/setup-go#383)

This release also includes the following changes:

New Contributors

Full Changelog: actions/setup-go@v4...v4.1.0

v4.0.1

What's Changed

New Contributors

Full Changelog: actions/setup-go@v4...v4.0.1

Commits

Updates actions/checkout from 3 to 4

Release notes

Sourced from actions/checkout's releases.

v4.0.0

What's Changed

New Contributors

Full Changelog: actions/checkout@v3...v4.0.0

v3.6.0

What's Changed

New Contributors

Full Changelog: actions/checkout@v3.5.3...v3.6.0

v3.5.3

What's Changed

New Contributors

Full Changelog: actions/checkout@v3...v3.5.3

v3.5.2

What's Changed

Full Changelog: actions/checkout@v3.5.1...v3.5.2

v3.5.1

What's Changed

New Contributors

... (truncated)

Commits

Updates github/codeql-action from 2 to 3

Release notes

Sourced from github/codeql-action's releases.

CodeQL Bundle v2.17.3

Bundles CodeQL CLI v2.17.3

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.17.3:

CodeQL Bundle v2.17.2

Bundles CodeQL CLI v2.17.2

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.17.2:

CodeQL Bundle v2.17.1

Bundles CodeQL CLI v2.17.1

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.17.1:

... (truncated)

Changelog

Sourced from github/codeql-action's changelog.

3.25.6 - 20 May 2024

  • Update default CodeQL bundle version to 2.17.3. #2295

3.25.5 - 13 May 2024

  • Add a compatibility matrix of supported CodeQL Action, CodeQL CLI, and GitHub Enterprise Server versions to the https://github.com/github/codeql-action/blob/main/README.md. #2273
  • Avoid printing out a warning for a missing on.push trigger when the CodeQL Action is triggered via a workflow_call event. #2274
  • The tools: latest input to the init Action has been renamed to tools: linked. This option specifies that the Action should use the tools shipped at the same time as the Action. The old name will continue to work for backwards compatibility, but we recommend that new workflows use the new name. #2281

3.25.4 - 08 May 2024

  • Update default CodeQL bundle version to 2.17.2. #2270

3.25.3 - 25 Apr 2024

  • Update default CodeQL bundle version to 2.17.1. #2247
  • Workflows running on macos-latest using CodeQL CLI versions before v2.15.1 will need to either upgrade their CLI version to v2.15.1 or newer, or change the platform to an Intel MacOS runner, such as macos-12. ARM machines with SIP disabled, including the newest macos-latest image, are unsupported for CLI versions before 2.15.1. #2261

3.25.2 - 22 Apr 2024

No user facing changes.

3.25.1 - 17 Apr 2024

  • We are rolling out a feature in April/May 2024 that improves the reliability and performance of analyzing code when analyzing a compiled language with the autobuild build mode. #2235
  • Fix a bug where the init Action would fail if --overwrite was specified in CODEQL_ACTION_EXTRA_OPTIONS. #2245

3.25.0 - 15 Apr 2024

  • The deprecated feature for extracting dependencies for a Python analysis has been removed. #2224

    As a result, the following inputs and environment variables are now ignored:

    • The setup-python-dependencies input to the init Action
    • The CODEQL_ACTION_DISABLE_PYTHON_DEPENDENCY_INSTALLATION environment variable

    We recommend removing any references to these from your workflows. For more information, see the release notes for CodeQL Action v3.23.0 and v2.23.0.

  • Automatically overwrite an existing database if found on the filesystem. #2229

  • Bump the minimum CodeQL bundle version to 2.12.6. #2232

  • A more relevant log message and a diagnostic are now emitted when the file program is not installed on a Linux runner, but is required for Go tracing to succeed. #2234

3.24.10 - 05 Apr 2024

  • Update default CodeQL bundle version to 2.17.0. #2219
  • Add a deprecation warning for customers using CodeQL version 2.12.5 and earlier. These versions of CodeQL were discontinued on 26 March 2024 alongside GitHub Enterprise Server 3.8, and will be unsupported by CodeQL Action versions 3.25.0 and later and versions 2.25.0 and later. #2220
    • If you are using one of these versions, please update to CodeQL CLI version 2.12.6 or later. For instance, if you have specified a custom version of the CLI using the 'tools' input to the 'init' Action, you can remove this input to use the default version.
    • Alternatively, if you want to continue using a version of the CodeQL CLI between 2.11.6 and 2.12.5, you can replace github/codeql-action/*@v3 by github/codeql-action/*@v3.24.10 and github/codeql-action/*@v2 by github/codeql-action/*@v2.24.10 in your code scanning workflow to ensure you continue using this version of the CodeQL Action.

3.24.9 - 22 Mar 2024

... (truncated)

Commits
  • cbe408d Add option tools: linked for init action.
  • bf2faab Merge pull request #2288 from github/mergeback/v3.25.5-to-main-b7cec752
  • 32f554e Update checked-in dependencies
  • 9f6ef11 Update changelog and version after v3.25.5
  • b7cec75 Merge pull request #2287 from github/update-v3.25.5-4a5197247
  • 90e315a Update tests for GHEC-DR
  • 6778fe4 Update changelog for v3.25.5
  • See full diff in compare view

Updates actions/setup-python from 4 to 5

Release notes

Sourced from actions/setup-python's releases.

v5.0.0

What's Changed

In scope of this release, we update node version runtime from node16 to node20 (actions/setup-python#772). Besides, we update dependencies to the latest versions.

Full Changelog: actions/setup-python@v4.8.0...v5.0.0

v4.8.0

What's Changed

In scope of this release we added support for GraalPy (actions/setup-python#694). You can use this snippet to set up GraalPy:

steps:
- uses: actions/checkout@v4
- uses: actions/setup-python@v4 
  with:
    python-version: 'graalpy-22.3' 
- run: python my_script.py

Besides, the release contains such changes as:

New Contributors

Full Changelog: actions/setup-python@v4...v4.8.0

v4.7.1

What's Changed

Full Changelog: actions/setup-python@v4...v4.7.1

v4.7.0

In scope of this release, the support for reading python version from pyproject.toml was added (actions/setup-python#669).

      - name: Setup Python
        uses: actions/setup-python@v4
</tr></table>

... (truncated)

Commits
  • 82c7e63 Documentation changes for avoiding rate limit issues on GHES (#835)
  • 10aa35a feat: fallback to raw endpoint for manifest when rate limit is reached (#766)
  • 9a7ac94 Bump undici from 5.27.2 to 5.28.3 (#817)
  • 871daa9 Fix the "Specifying multiple Python/PyPy versions" link (#782)
  • 2f07895 Fix broken README.md link (#793)
  • e9d6f99 Replace setup-python@v4 by setup-python@v5 in README (#776)
  • 0a5c615 Update action to node20 (#772)
  • 0ae5836 Add example of GraalPy to docs (#773)
  • b64ffca update actions/checkout to v4 (#761)
  • 8d28961 Examples now use checkout@v4 (#738)
  • Additional commits viewable in compare view

Updates actions/github-script from 6.4.1 to 7.0.1

Release notes

Sourced from actions/github-script's releases.

v7.0.1

What's Changed

Full Changelog: actions/github-script@v7.0.0...v7.0.1

v7.0.0

What's Changed

New Contributors

Full Changelog: actions/github-script@v6.4.1...v7.0.0

Commits
  • 60a0d83 Merge pull request #440 from actions/joshmgross/v7.0.1
  • b7fb200 Update version to 7.0.1
  • 12e22ed Merge pull request #439 from actions/joshmgross/avoid-setting-base-url
  • d319f8f Avoid setting baseUrl to undefined when input is not provided
  • e69ef54 Merge pull request #425 from actions/joshmgross/node-20
  • ee0914b Update licenses
  • d6fc56f Use @types/node for Node 20
  • 384d6cf Fix quotations in tests
  • 8472492 Only validate GraphQL previews
  • 84903f5 Remove node-fetch from type
  • Additional commits viewable in compare view

Updates GrantBirki/json-yaml-validate from 1.5.0 to 3.0.0

Release notes

Sourced from GrantBirki/json-yaml-validate's releases.

v3.0.0

What's Changed

⚠️ Potentially breaking changes ⚠️ - details

Full Changelog: GrantBirki/json-yaml-validate@v2...v3.0.0

v2.7.1

What's Changed

Full Changelog: GrantBirki/json-yaml-validate@v2.7.0...v2.7.1

v2.7.0

What's Changed

This release adds a new input option (ajv_custom_regexp_formats) which allows users to define custom ajv regex formats for validating JSON data through their schemas. Thanks to @​cfuerst for this excellent new feature! 🎉

Usage of this new feature is documented on the main README of this Action 📚

New Contributors

Full Changelog: GrantBirki/json-yaml-validate@v2.6.2...v2.7.0

v2.6.2

What's Changed

This release mostly just updates internal node dependencies used by this GitHub Action

Full Changelog: GrantBirki/json-yaml-validate@v2.6.1...v2.6.2

v2.6.1

What's Changed

Internal node dependency updates and CI updates

... (truncated)

Commits
  • 3a3d883 Merge pull request #66 from GrantBirki/better-gitignore-support
  • 65c3073 bundle and lint
  • c355820 use the ignore npm package
  • b1e9ae9 add ignore package
  • d7814b9 Merge pull request #64 from cfuerst/fix/support-custom-ajv-format/tests
  • 5dab15a bundle with npm run all
  • ae050de fix(ajv-custom-format): tighten implemenation and provide missing tests
  • 6aecea1 Merge pull request #63 from GrantBirki/docs-updates
  • 7a5a721 add Custom Regex Formats section to the documentation
  • 33e30cf Merge pull request #62 from GrantBirki/node-package-updates
  • Additional commits viewable in compare view

Updates azure/setup-helm from 3.5 to 4

Release notes

Sourced from azure/setup-helm's releases.

v4.0.0

  • #121 update to node20 as node16 is deprecated
Changelog

Sourced from azure/setup-helm's changelog.

Change Log

[4.2.0] - 2024-04-15

  • #124 Fix OS detection and download OS-native archive extension

[4.1.0] - 2024-03-01

  • #130 switches to use Helm published file to read latest version instead of using GitHub releases

[4.0.0] - 2024-02-12

  • #121 update to node20 as node16 is deprecated
Commits

Updates helm/chart-testing-action from 2.4.0 to 2.6.1

Release notes

Sourced from helm/chart-testing-action's releases.

v2.6.1

What's Changed

Full Changelog: helm/chart-testing-action@v2...v2.6.1

v2.6.0

What's Changed

Full Changelog: helm/chart-testing-action@v2...v2.6.0

v2.5.0

What's Changed

New Contributors

Full Changelog: helm/chart-testing-action@v2.4.0...v2.5.0

Commits

Updates helm/kind-action from 1.7.0 to 1.10.0

Release notes

Sourced from helm/kind-action's releases.

v1.10.0

Requirements

We changed to use wget instead of curl

What's Changed

Full Changelog: helm/kind-action@v1.9.0...v1.10.0

v1.9.0

What's Changed

@dependabot
58a2a11 
---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: dev-dependencies
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: dev-dependencies
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: dev-dependencies
- dependency-name: actions/setup-python
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: dev-dependencies
- dependency-name: actions/github-script
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: dev-dependencies
- dependency-name: GrantBirki/json-yaml-validate
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: dev-dependencies
- dependency-name: azure/setup-helm
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: dev-dependencies
- dependency-name: helm/chart-testing-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
- dependency-name: helm/kind-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
- dependency-name: helm/chart-releaser-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels May 21, 2024
@dependabot dependabot bot mentioned this pull request May 21, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants