From 607e57c228754a660866af7f70cecaa60a472881 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 28 Oct 2024 10:47:25 +0000 Subject: [PATCH] chore(deps): bump the dependencies group across 1 directory with 6 updates Bumps the dependencies group with 6 updates in the / directory: | Package | From | To | | --- | --- | --- | | [toshimaru/auto-author-assign](https://github.com/toshimaru/auto-author-assign) | `2.1.0` | `2.1.1` | | [actions/checkout](https://github.com/actions/checkout) | `4.1.6` | `4.2.2` | | [github/codeql-action](https://github.com/github/codeql-action) | `3.25.8` | `3.27.0` | | [EndBug/version-check](https://github.com/endbug/version-check) | `2.1.4` | `2.1.5` | | [actions/setup-node](https://github.com/actions/setup-node) | `4.0.2` | `4.1.0` | | [anothrNick/github-tag-action](https://github.com/anothrnick/github-tag-action) | `1.67.0` | `1.71.0` | Updates `toshimaru/auto-author-assign` from 2.1.0 to 2.1.1 - [Release notes](https://github.com/toshimaru/auto-author-assign/releases) - [Changelog](https://github.com/toshimaru/auto-author-assign/blob/main/CHANGELOG.md) - [Commits](https://github.com/toshimaru/auto-author-assign/compare/ebd30f10fb56e46eb0759a14951f36991426fed0...16f0022cf3d7970c106d8d1105f75a1165edb516) Updates `actions/checkout` from 4.1.6 to 4.2.2 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/a5ac7e51b41094c92402da3b24376905380afc29...11bd71901bbe5b1630ceea73d27597364c9af683) Updates `github/codeql-action` from 3.25.8 to 3.27.0 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/2e230e8fe0ad3a14a340ad0815ddb96d599d2aff...662472033e021d55d94146f66f6058822b0b39fd) Updates `EndBug/version-check` from 2.1.4 to 2.1.5 - [Release notes](https://github.com/endbug/version-check/releases) - [Commits](https://github.com/endbug/version-check/compare/d4be4219408b50d1bbbfd350a47cbcb126878692...36ff30f37c7deabe56a30caa043d127be658c425) Updates `actions/setup-node` from 4.0.2 to 4.1.0 - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/60edb5dd545a775178f52524783378180af0d1f8...39370e3970a6d050c480ffad4ff0ed4d3fdee5af) Updates `anothrNick/github-tag-action` from 1.67.0 to 1.71.0 - [Release notes](https://github.com/anothrnick/github-tag-action/releases) - [Commits](https://github.com/anothrnick/github-tag-action/compare/a2c70ae13a881faf2b4953baaa9e49731997ab36...f278d49d30cdd8775cc3e7dd00b5ee11686ee297) --- updated-dependencies: - dependency-name: toshimaru/auto-author-assign dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: EndBug/version-check dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: actions/setup-node dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: anothrNick/github-tag-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies ... Signed-off-by: dependabot[bot] --- .github/workflows/auto-assign-author.yaml | 2 +- .github/workflows/codeql.yaml | 8 ++++---- .github/workflows/release.yaml | 10 +++++----- .github/workflows/test.yaml | 4 ++-- 4 files changed, 12 insertions(+), 12 deletions(-) diff --git a/.github/workflows/auto-assign-author.yaml b/.github/workflows/auto-assign-author.yaml index ce300cc..331ba55 100644 --- a/.github/workflows/auto-assign-author.yaml +++ b/.github/workflows/auto-assign-author.yaml @@ -10,6 +10,6 @@ jobs: pull-requests: write runs-on: ubuntu-latest steps: - - uses: toshimaru/auto-author-assign@ebd30f10fb56e46eb0759a14951f36991426fed0 # v2.1.0 + - uses: toshimaru/auto-author-assign@16f0022cf3d7970c106d8d1105f75a1165edb516 # v2.1.1 with: repo-token: "${{ secrets.GITHUB_TOKEN }}" diff --git a/.github/workflows/codeql.yaml b/.github/workflows/codeql.yaml index b3a43c4..0438ed5 100644 --- a/.github/workflows/codeql.yaml +++ b/.github/workflows/codeql.yaml @@ -22,14 +22,14 @@ jobs: language: ['typescript', 'javascript'] steps: - name: Checkout repository - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 - name: Initialize CodeQL - uses: github/codeql-action/init@2e230e8fe0ad3a14a340ad0815ddb96d599d2aff # v3 + uses: github/codeql-action/init@662472033e021d55d94146f66f6058822b0b39fd # v3 with: languages: ${{ matrix.language }} - name: Autobuild - uses: github/codeql-action/autobuild@2e230e8fe0ad3a14a340ad0815ddb96d599d2aff # v3 + uses: github/codeql-action/autobuild@662472033e021d55d94146f66f6058822b0b39fd # v3 - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@2e230e8fe0ad3a14a340ad0815ddb96d599d2aff # v3 + uses: github/codeql-action/analyze@662472033e021d55d94146f66f6058822b0b39fd # v3 with: category: "/language:${{matrix.language}}" diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index cee9db5..4c36e24 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -15,10 +15,10 @@ jobs: changed: ${{ steps.check.outputs.changed }} version: ${{ steps.check.outputs.version }} steps: - - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 - name: Check if version has been updated id: check - uses: EndBug/version-check@d4be4219408b50d1bbbfd350a47cbcb126878692 # v2 + uses: EndBug/version-check@36ff30f37c7deabe56a30caa043d127be658c425 # v2 with: static-checking: localIsNew file-url: https://unpkg.com/@procore/js-sdk/package.json @@ -34,9 +34,9 @@ jobs: env: NODE_VERSION: 20 steps: - - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 - name: Set up node - uses: actions/setup-node@60edb5dd545a775178f52524783378180af0d1f8 # v4 + uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af # v4 with: node-version: ${{ env.NODE_VERSION }} registry-url: 'https://registry.npmjs.org' @@ -49,7 +49,7 @@ jobs: env: NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }} - name: Tag the release - uses: anothrNick/github-tag-action@a2c70ae13a881faf2b4953baaa9e49731997ab36 # 1.67.0 + uses: anothrNick/github-tag-action@f278d49d30cdd8775cc3e7dd00b5ee11686ee297 # 1.71.0 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} CUSTOM_TAG: v${{ needs.version-check.outputs.version }} diff --git a/.github/workflows/test.yaml b/.github/workflows/test.yaml index dca1364..031a451 100644 --- a/.github/workflows/test.yaml +++ b/.github/workflows/test.yaml @@ -15,9 +15,9 @@ jobs: # https://docs.github.com/en/actions/learn-github-actions/expressions#example runs-on: ubuntu-latest steps: - - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 - name: Set up node ${{ matrix.node }} - uses: actions/setup-node@60edb5dd545a775178f52524783378180af0d1f8 # v4 + uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af # v4 with: node-version: ${{ matrix.node}} cache: 'yarn'