Skip to content

Bump codecov/codecov-action from 4.5.0 to 5.4.0 in the all-github-actions group#429

Merged
k8s-ci-robot merged 1 commit intomainfrom
dependabot/github_actions/all-github-actions-25b98424b1
Apr 24, 2025
Merged

Bump codecov/codecov-action from 4.5.0 to 5.4.0 in the all-github-actions group#429
k8s-ci-robot merged 1 commit intomainfrom
dependabot/github_actions/all-github-actions-25b98424b1

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 25, 2025
edited
Loading

Bumps the all-github-actions group with 1 update: codecov/codecov-action.

Updates codecov/codecov-action from 4.5.0 to 5.4.0

Release notes

Sourced from codecov/codecov-action's releases.

v5.4.0

What's Changed

New Contributors

Full Changelog: codecov/codecov-action@v5.3.1...v5.4.0

v5.3.1

What's Changed

Full Changelog: codecov/codecov-action@v5.3.0...v5.3.1

v5.3.0

What's Changed

Full Changelog: codecov/codecov-action@v5.2.0...v5.3.0

v5.2.0

What's Changed

... (truncated)

Changelog

Sourced from codecov/codecov-action's changelog.

v5.4.0

What's Changed

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.3.1..v5.4.0

v5.3.1

What's Changed

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.3.0..v5.3.1

v5.3.0

What's Changed

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.2.0..v5.3.0

v5.2.0

What's Changed

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.1.2..v5.2.0

... (truncated)

Commits
  • 0565863 chore(release): 5.4.0 (#1781)
  • c545d7b update wrapper submodule to 0.2.0, add recurse_submodules arg (#1780)
  • 2488e99 build(deps): bump actions/upload-artifact from 4.6.0 to 4.6.1 (#1775)
  • a46c158 build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.1 (#1776)
  • 062ee7e build(deps): bump github/codeql-action from 3.28.9 to 3.28.10 (#1777)
  • 1fecca8 Clarify in README that use_pypi bypasses integrity checks too (#1773)
  • 2e6e9c5 Fix use of safe.directory inside containers (#1768)
  • a5dc5a5 Fix description for report_type input (#1770)
  • 4898080 build(deps): bump github/codeql-action from 3.28.8 to 3.28.9 (#1765)
  • 5efa07b Fix a typo in the example (#1758)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Mar 25, 2025

Labels

The following labels could not be found: dependabot. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot dependabot bot added the ok-to-test Indicates a non-member PR verified by an org member that is safe to test. label Mar 25, 2025
@k8s-ci-robot
Copy link
Contributor

k8s-ci-robot commented Mar 25, 2025

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a kubernetes-sigs member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@k8s-ci-robot k8s-ci-robot added cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. labels Mar 25, 2025
@netlify
Copy link

netlify bot commented Mar 25, 2025
edited
Loading

Deploy Preview for kubernetes-sigs-cluster-api-cloudstack ready!

Name Link
🔨 Latest commit bd1854e
🔍 Latest deploy log https://app.netlify.com/sites/kubernetes-sigs-cluster-api-cloudstack/deploys/67eb25489c1401000865484e
😎 Deploy Preview https://deploy-preview-429--kubernetes-sigs-cluster-api-cloudstack.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify site configuration.

@dependabot
Bump codecov/codecov-action in the all-github-actions group
bd1854e 
Bumps the all-github-actions group with 1 update: [codecov/codecov-action](https://github.com/codecov/codecov-action).


Updates `codecov/codecov-action` from 4.5.0 to 5.4.0
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](codecov/codecov-action@v4.5.0...v5.4.0)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/github_actions/all-github-actions-25b98424b1 branch from 23fb2e1 to bd1854e Compare March 31, 2025 23:29
vishesh92
vishesh92 approved these changes Apr 24, 2025
View reviewed changes
Copy link
Member

@vishesh92 vishesh92 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm

@k8s-ci-robot k8s-ci-robot added the lgtm "Looks good to me", indicates that a PR is ready to be merged. label Apr 24, 2025
@k8s-ci-robot
Copy link
Contributor

k8s-ci-robot commented Apr 24, 2025

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: dependabot[bot], vishesh92

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@k8s-ci-robot k8s-ci-robot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Apr 24, 2025
@k8s-ci-robot k8s-ci-robot merged commit 8ccef79 into main Apr 24, 2025
10 checks passed
@k8s-ci-robot k8s-ci-robot deleted the dependabot/github_actions/all-github-actions-25b98424b1 branch April 24, 2025 07:48
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@vishesh92 vishesh92 vishesh92 approved these changes

@g-gaston g-gaston Awaiting requested review from g-gaston

@jweite-amazon jweite-amazon Awaiting requested review from jweite-amazon

Assignees

@vishesh92 vishesh92

Labels

approved Indicates a PR has been approved by an approver from all required OWNERS files. cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. lgtm "Looks good to me", indicates that a PR is ready to be merged. ok-to-test Indicates a non-member PR verified by an org member that is safe to test. size/XS Denotes a PR that changes 0-9 lines, ignoring generated files.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@k8s-ci-robot @vishesh92