Bump 1password/load-secrets-action from 3 to 4 (#12668)

dependabot[bot] · testlabauto · melissa-barca · commit 0ea0d535666d · 2026-03-25T10:17:45.000-04:00
Bumps [1password/load-secrets-action](https://github.com/1password/load-secrets-action) from 3 to 4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/1password/load-secrets-action/releases">1password/load-secrets-action's releases</a>.</em></p> <blockquote> <h2>v4.0.0</h2> <h2>What's Changed</h2> <ul> <li>Clear <strong>npm audit</strong> / <strong>Dependabot</strong> findings via <strong><code>npm audit fix</code></strong> where safe (e.g. <strong>ajv</strong>, <strong>flatted</strong>, <strong>undici</strong>, and other resolvable <strong>minimatch</strong> updates). <a href="https://redirect.github.com/1password/load-secrets-action/issues/151">#151</a></li> <li>Action runtime updated from Node 20 to <strong>Node 24</strong> for GitHub Actions compatibility (<a href="https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/">deprecation notice</a>). <a href="https://redirect.github.com/1password/load-secrets-action/issues/148">#148</a>.</li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/jjavieralv"><code>@​jjavieralv</code></a> made their first contribution in <a href="https://redirect.github.com/1Password/load-secrets-action/pull/149">1Password/load-secrets-action#149</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/1Password/load-secrets-action/compare/v3...v4.0.0">https://github.com/1Password/load-secrets-action/compare/v3...v4.0.0</a></p> <h2>v3.2.1</h2> <h2>What's Changed</h2> <h3>Fix</h3> <ul> <li>Revert SDK field-resolution regression introduced in v3.2.0 that broke certain valid secret refs (website/url fields) <a href="https://redirect.github.com/1Password/load-secrets-action/pull/145">1Password/load-secrets-action#145</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/1Password/load-secrets-action/compare/v3.2.0...v3.2.1">https://github.com/1Password/load-secrets-action/compare/v3.2.0...v3.2.1</a></p> <h2>v3.2.0</h2> <h2>What's changed</h2> <h2>Features</h2> <ul> <li>Service account auth now uses the 1Password SDK instead of the CLI; the CLI is not installed when using a service account token. <a href="https://redirect.github.com/1Password/load-secrets-action/pull/137">1Password/load-secrets-action#137</a></li> </ul> <h2>Fix</h2> <ul> <li>Empty string secret values are now set as outputs and environment variables instead of being skipped by <a href="https://github.com/toga4"><code>@​toga4</code></a> in <a href="https://redirect.github.com/1Password/load-secrets-action/pull/132">1Password/load-secrets-action#132</a></li> <li>Docs: Documented the SSH key format parameter for secret references by <a href="https://github.com/BolajiOlajide"><code>@​BolajiOlajide</code></a> in <a href="https://redirect.github.com/1Password/load-secrets-action/pull/130">1Password/load-secrets-action#130</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/BolajiOlajide"><code>@​BolajiOlajide</code></a> made their first contribution in <a href="https://redirect.github.com/1Password/load-secrets-action/pull/130">1Password/load-secrets-action#130</a></li> <li><a href="https://github.com/toga4"><code>@​toga4</code></a> made their first contribution in <a href="https://redirect.github.com/1Password/load-secrets-action/pull/132">1Password/load-secrets-action#132</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/1Password/load-secrets-action/compare/v3.1.0...v3.2.0">https://github.com/1Password/load-secrets-action/compare/v3.1.0...v3.2.0</a></p> <h2>v3.1.0</h2> <h2>What's Changed</h2> <h2>🚀 Features</h2> <ul> <li>Support loading secrets from env files <a href="https://redirect.github.com/1password/load-secrets-action/issues/93">#93</a></li> </ul> <h2>Fixes</h2> <ul> <li><code>op-cli-installer</code> dependency is removed <a href="https://redirect.github.com/1Password/load-secrets-action/pull/127">1Password/load-secrets-action#127</a></li> </ul> <h2>Security</h2> <ul> <li>Updates js-yaml from 4.1.0 to 4.1.1 <a href="https://redirect.github.com/1Password/load-secrets-action/pull/128">1Password/load-secrets-action#128</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/geofox"><code>@​geofox</code></a> made their first contribution in <a href="https://redirect.github.com/1Password/load-secrets-action/pull/117">1Password/load-secrets-action#117</a></li> </ul>  </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/1Password/load-secrets-action/commit/92467eb28f72e8255933372f1e0707c567ce2259"><code>92467eb</code></a> Merge pull request <a href="https://redirect.github.com/1password/load-secrets-action/issues/153">#153</a> from 1Password/release/v4.0.0</li> <li><a href="https://github.com/1Password/load-secrets-action/commit/21f21cb3122f5fe7bfdfd67df466dcdb3779307e"><code>21f21cb</code></a> Update readme</li> <li><a href="https://github.com/1Password/load-secrets-action/commit/a82b5b0e6208219fa3988afa58471e77f1ae24c7"><code>a82b5b0</code></a> create new build</li> <li><a href="https://github.com/1Password/load-secrets-action/commit/355a4641a8ce03214b1d4713e4df46ce299aa659"><code>355a464</code></a> Merge pull request <a href="https://redirect.github.com/1password/load-secrets-action/issues/151">#151</a> from 1Password/fix/dependabot-alerts</li> <li><a href="https://github.com/1Password/load-secrets-action/commit/50dbf2f36c578393af5f8c525f7b55fd04ec600c"><code>50dbf2f</code></a> Run npm isntall</li> <li><a href="https://github.com/1Password/load-secrets-action/commit/2a602963c2584abcf77cd466b8b6e386f833f3b2"><code>2a60296</code></a> Undo version bump</li> <li><a href="https://github.com/1Password/load-secrets-action/commit/61e04e231d813e6a6f186baa3c659316dfe1ddaa"><code>61e04e2</code></a> Overide minimatch</li> <li><a href="https://github.com/1Password/load-secrets-action/commit/93d1217e3f210e307b4fc30ee8e0e18f590a1e0e"><code>93d1217</code></a> Merge pull request <a href="https://redirect.github.com/1password/load-secrets-action/issues/150">#150</a> from 1Password/jill/update-tests-to-use-node-24</li> <li><a href="https://github.com/1Password/load-secrets-action/commit/17a79a92a6dc3496470258dff9b216fd5033b503"><code>17a79a9</code></a> Undo mistaken udpate</li> <li><a href="https://github.com/1Password/load-secrets-action/commit/7a0b59f9ab438aecbc232501a58d8c34a18f6591"><code>7a0b59f</code></a> Update to v6</li> <li>Additional commits viewable in <a href="https://github.com/1password/load-secrets-action/compare/v3...v4">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=1password/load-secrets-action&package-manager=github_actions&previous-version=3&new-version=4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Chris Mead <chris.mead@posit.co>
diff --git a/.github/workflows/test-e2e-debian.yml b/.github/workflows/test-e2e-debian.yml
@@ -142,7 +142,7 @@ jobs:
         run: git checkout ${{ inputs.commit }}
 
       - name: Load secret
-        uses: 1password/load-secrets-action@v3
+        uses: 1password/load-secrets-action@v4
         with:
           # Export loaded secrets as environment variables
           export-env: true
diff --git a/.github/workflows/test-e2e-rhel.yml b/.github/workflows/test-e2e-rhel.yml
@@ -142,7 +142,7 @@ jobs:
         run: git checkout ${{ inputs.commit }}
 
       - name: Load secret
-        uses: 1password/load-secrets-action@v3
+        uses: 1password/load-secrets-action@v4
         with:
           # Export loaded secrets as environment variables
           export-env: true
diff --git a/.github/workflows/test-e2e-sles.yml b/.github/workflows/test-e2e-sles.yml
@@ -142,7 +142,7 @@ jobs:
         run: git checkout ${{ inputs.commit }}
 
       - name: Load secret
-        uses: 1password/load-secrets-action@v3
+        uses: 1password/load-secrets-action@v4
         with:
           # Export loaded secrets as environment variables
           export-env: true
diff --git a/.github/workflows/test-e2e-suse.yml b/.github/workflows/test-e2e-suse.yml
@@ -142,7 +142,7 @@ jobs:
         run: git checkout ${{ inputs.commit }}
 
       - name: Load secret
-        uses: 1password/load-secrets-action@v3
+        uses: 1password/load-secrets-action@v4
         with:
           # Export loaded secrets as environment variables
           export-env: true
diff --git a/.github/workflows/test-e2e-ubuntu-run.yml b/.github/workflows/test-e2e-ubuntu-run.yml
@@ -155,7 +155,7 @@ jobs:
           aws-region: ${{ secrets.QA_AWS_REGION }}
 
       - name: Load secret
-        uses: 1password/load-secrets-action@v3
+        uses: 1password/load-secrets-action@v4
         with:
           export-env: true
         env:
diff --git a/.github/workflows/test-e2e-ubuntu.yml b/.github/workflows/test-e2e-ubuntu.yml
@@ -143,7 +143,7 @@ jobs:
           submodules: recursive
 
       - name: Load secret
-        uses: 1password/load-secrets-action@v3
+        uses: 1password/load-secrets-action@v4
         with:
           # Export loaded secrets as environment variables
           export-env: true
diff --git a/.github/workflows/test-e2e-windows-run.yml b/.github/workflows/test-e2e-windows-run.yml
@@ -120,7 +120,7 @@ jobs:
         run: git checkout ${{ inputs.commit }}
 
       - name: Load secret
-        uses: 1password/load-secrets-action@v3
+        uses: 1password/load-secrets-action@v4
         with:
           # Export loaded secrets as environment variables
           export-env: true
diff --git a/.github/workflows/test-e2e-workbench-ubuntu.yml b/.github/workflows/test-e2e-workbench-ubuntu.yml
@@ -77,7 +77,7 @@ jobs:
           aws-region: ${{ secrets.QA_AWS_REGION }}
 
       - name: Load secret
-        uses: 1password/load-secrets-action@v3
+        uses: 1password/load-secrets-action@v4
         with:
           export-env: true
         env:
