Skip to content

deps(github/action): bump all dependencies#73

Closed
updateclibot[bot] wants to merge 0 commit intomainfrom
updatecli_main_75bba88f02d598aa1c677386f95e52cad73c9dfb05c65bf6bd87395d6e33aaca
Closed

deps(github/action): bump all dependencies#73
updateclibot[bot] wants to merge 0 commit intomainfrom
updatecli_main_75bba88f02d598aa1c677386f95e52cad73c9dfb05c65bf6bd87395d6e33aaca

Conversation

@updateclibot
Copy link
Copy Markdown
Contributor

@updateclibot updateclibot bot commented Feb 10, 2025
edited
Loading

deps: bump docker/setup-qemu-action GitHub workflow

deps(github): bump Action tag for docker/setup-qemu-action from v3.5.0 to v3.6.0

change detected: * key "$.jobs.build.steps[1].uses" updated from "docker/setup-qemu-action@v3.5.0" to "docker/setup-qemu-action@v3.6.0", in file ".github/workflows/release.yaml"

deps(github): bump Action release for docker/setup-qemu-action from v3.4.0 to v3.5.0

change detected: * key "$.jobs.build.steps[1].uses" updated from "docker/setup-qemu-action@v3.4.0" to "docker/setup-qemu-action@v3.5.0", in file ".github/workflows/release.yaml"

v3.5.0 
Release published on the 2025-02-26 15:41:14 +0000 UTC at the url https://github.com/docker/setup-qemu-action/releases/tag/v3.5.0

* Bump @docker/actions-toolkit from 0.54.0 to 0.56.0 in https://github.com/docker/setup-qemu-action/pull/205

**Full Changelog**: https://github.com/docker/setup-qemu-action/compare/v3.4.0...v3.5.0
GitHub Action workflow link

deps: bump codecov/codecov-action GitHub workflow

deps(github): bump Action tag for codecov/codecov-action from v5.4.2 to v5.4.3

change detected: * key "$.jobs.build.steps[7].uses" updated from "codecov/codecov-action@v5.4.2" to "codecov/codecov-action@v5.4.3", in file ".github/workflows/go.yaml"

deps(github): bump Action release for codecov/codecov-action from v5.4.1 to v5.4.2

change detected: * key "$.jobs.build.steps[7].uses" updated from "codecov/codecov-action@v5.4.1" to "codecov/codecov-action@v5.4.2", in file ".github/workflows/go.yaml"

v5.4.0 
Release published on the 2025-02-26 23:41:16 +0000 UTC at the url https://github.com/codecov/codecov-action/releases/tag/v5.4.0

## What's Changed
* build(deps): bump github/codeql-action from 3.28.1 to 3.28.5 by @dependabot in https://github.com/codecov/codecov-action/pull/1753
* build(deps): bump github/codeql-action from 3.28.5 to 3.28.8 by @dependabot in https://github.com/codecov/codecov-action/pull/1757
* Fix a typo in the example by @miranska in https://github.com/codecov/codecov-action/pull/1758
* build(deps): bump github/codeql-action from 3.28.8 to 3.28.9 by @dependabot in https://github.com/codecov/codecov-action/pull/1765
* Fix description for report_type input by @craigscott-crascit in https://github.com/codecov/codecov-action/pull/1770
* Fix use of safe.directory inside containers by @Flamefire in https://github.com/codecov/codecov-action/pull/1768
* Clarify in README that `use_pypi` bypasses integrity checks too by @webknjaz in https://github.com/codecov/codecov-action/pull/1773
* build(deps): bump github/codeql-action from 3.28.9 to 3.28.10 by @dependabot in https://github.com/codecov/codecov-action/pull/1777
* build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.1 by @dependabot in https://github.com/codecov/codecov-action/pull/1776
* build(deps): bump actions/upload-artifact from 4.6.0 to 4.6.1 by @dependabot in https://github.com/codecov/codecov-action/pull/1775
* update wrapper submodule to 0.2.0, add recurse_submodules arg by @matt-codecov in https://github.com/codecov/codecov-action/pull/1780
* chore(release): 5.4.0 by @thomasrockhu-codecov in https://github.com/codecov/codecov-action/pull/1781

## New Contributors
* @miranska made their first contribution in https://github.com/codecov/codecov-action/pull/1758
* @craigscott-crascit made their first contribution in https://github.com/codecov/codecov-action/pull/1770
* @Flamefire made their first contribution in https://github.com/codecov/codecov-action/pull/1768
* @matt-codecov made their first contribution in https://github.com/codecov/codecov-action/pull/1780

**Full Changelog**: https://github.com/codecov/codecov-action/compare/v5.3.1...v5.4.0
GitHub Action workflow link

deps: bump goreleaser/goreleaser-action GitHub workflow

deps(github): bump Action tag for goreleaser/goreleaser-action from v6.2.1 to v6.3.0

change detected: * key "$.jobs.build.steps[3].uses" updated from "goreleaser/goreleaser-action@v6.2.1" to "goreleaser/goreleaser-action@v6.3.0", in file ".github/workflows/go.yaml"

deps(github): bump Action release for goreleaser/goreleaser-action from v6.2.1 to v6.3.0

change detected: * key "$.jobs.build.steps[4].uses" updated from "goreleaser/goreleaser-action@v6.2.1" to "goreleaser/goreleaser-action@v6.3.0", in file ".github/workflows/release.yaml"

GitHub Action workflow link

deps: bump anchore/sbom-action/download-syft GitHub workflow

deps(github): bump Action tag for anchore/sbom-action/download-syft from v0.20.1 to v0.20.2

change detected: * key "$.jobs.build.steps[7].uses" updated from "anchore/sbom-action/download-syft@v0.20.1" to "anchore/sbom-action/download-syft@v0.20.2", in file ".github/workflows/release.yaml"

deps(github): bump Action release for anchore/sbom-action/download-syft from v0.20.0 to v0.20.1

change detected: * key "$.jobs.build.steps[7].uses" updated from "anchore/sbom-action/download-syft@v0.20.0" to "anchore/sbom-action/download-syft@v0.20.1", in file ".github/workflows/release.yaml"

GitHub Action workflow link

deps: bump docker/setup-buildx-action GitHub workflow

deps(github): bump Action tag for docker/setup-buildx-action from v3.11.0 to v3.11.1

change detected: * key "$.jobs.build.steps[2].uses" updated from "docker/setup-buildx-action@v3.11.0" to "docker/setup-buildx-action@v3.11.1", in file ".github/workflows/release.yaml"

GitHub Action workflow link

deps: bump docker/login-action GitHub workflow

deps(github): bump Action release for docker/login-action from v3.3.0 to v3.4.0

change detected: * key "$.jobs.build.steps[9].uses" updated from "docker/login-action@v3.3.0" to "docker/login-action@v3.4.0", in file ".github/workflows/release.yaml"

GitHub Action workflow link

deps: bump golangci/golangci-lint-action GitHub workflow

deps(github): bump Action tag for golangci/golangci-lint-action from v6.3.1 to v6.3.2

change detected: * key "$.jobs.build.steps[2].uses" updated from "golangci/golangci-lint-action@v6.3.1" to "golangci/golangci-lint-action@v6.3.2", in file ".github/workflows/go.yaml"

deps(github): bump Action release for golangci/golangci-lint-action from v6.3.2 to v6.3.3

change detected: * key "$.jobs.build.steps[2].uses" updated from "golangci/golangci-lint-action@v6.3.2" to "golangci/golangci-lint-action@v6.3.3", in file ".github/workflows/go.yaml"

v6.3.3 
Release published on the 2025-02-13 12:38:30 +0000 UTC at the url https://github.com/golangci/golangci-lint-action/releases/tag/v6.3.3

<!-- Release notes generated using configuration in .github/release.yml at v6.3.3 -->

## What's Changed
### Changes
* fix: go.mod parsing by @ldez in https://github.com/golangci/golangci-lint-action/pull/1165


**Full Changelog**: https://github.com/golangci/golangci-lint-action/compare/v6.3.2...v6.3.3
v6.4.1 
Release published on the 2025-02-14 12:58:14 +0000 UTC at the url https://github.com/golangci/golangci-lint-action/releases/tag/v6.4.1

<!-- Release notes generated using configuration in .github/release.yml at v6.4.1 -->

## What's Changed
### Changes
* fix: use config arg for verify by @ldez in https://github.com/golangci/golangci-lint-action/pull/1168


**Full Changelog**: https://github.com/golangci/golangci-lint-action/compare/v6.4.0...v6.4.1
GitHub Action workflow link

deps: bump github/codeql-action/autobuild GitHub workflow

deps(github): bump Action tag for github/codeql-action/autobuild from v3.29.1 to v3.29.2

change detected: * key "$.jobs.analyse.steps[3].uses" updated from "github/codeql-action/autobuild@v3.29.1" to "github/codeql-action/autobuild@v3.29.2", in file ".github/workflows/codeql-analysis.yml"

deps(github): bump Action release for github/codeql-action/autobuild from v3.29.0 to v3.29.1

change detected: * key "$.jobs.analyse.steps[3].uses" updated from "github/codeql-action/autobuild@v3.29.0" to "github/codeql-action/autobuild@v3.29.1", in file ".github/workflows/codeql-analysis.yml"

v3.28.10 
Release published on the 2025-02-21 16:09:59 +0000 UTC at the url https://github.com/github/codeql-action/releases/tag/v3.28.10

# CodeQL Action Changelog

See the [releases page](https://github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs.

## 3.28.10 - 21 Feb 2025

- Update default CodeQL bundle version to 2.20.5. [#2772](https://github.com/github/codeql-action/pull/2772)
- Address an issue where the CodeQL Bundle would occasionally fail to decompress on macOS. [#2768](https://github.com/github/codeql-action/pull/2768)

See the full [CHANGELOG.md](https://github.com/github/codeql-action/blob/v3.28.10/CHANGELOG.md) for more information.
v3.28.11 
Release published on the 2025-03-07 16:09:59 +0000 UTC at the url https://github.com/github/codeql-action/releases/tag/v3.28.11

# CodeQL Action Changelog

See the [releases page](https://github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs.

## 3.28.11 - 07 Mar 2025

- Update default CodeQL bundle version to 2.20.6. [#2793](https://github.com/github/codeql-action/pull/2793)

See the full [CHANGELOG.md](https://github.com/github/codeql-action/blob/v3.28.11/CHANGELOG.md) for more information.
GitHub Action workflow link

deps: bump actions/setup-go GitHub workflow

deps(github): bump Action tag for actions/setup-go from v5.3.0 to v5.4.0

change detected: * key "$.jobs.build.steps[0].uses" updated from "actions/setup-go@v5.3.0" to "actions/setup-go@v5.4.0", in file ".github/workflows/go.yaml"

deps(github): bump Action release for actions/setup-go from v5.3.0 to v5.4.0

change detected: * key "$.jobs.build.steps[3].uses" updated from "actions/setup-go@v5.3.0" to "actions/setup-go@v5.4.0", in file ".github/workflows/release.yaml"

GitHub Action workflow link

deps: bump github/codeql-action/analyze GitHub workflow

deps(github): bump Action tag for github/codeql-action/analyze from v3.29.1 to v3.29.2

change detected: * key "$.jobs.analyse.steps[4].uses" updated from "github/codeql-action/analyze@v3.29.1" to "github/codeql-action/analyze@v3.29.2", in file ".github/workflows/codeql-analysis.yml"

deps(github): bump Action release for github/codeql-action/analyze from v3.29.0 to v3.29.1

change detected: * key "$.jobs.analyse.steps[4].uses" updated from "github/codeql-action/analyze@v3.29.0" to "github/codeql-action/analyze@v3.29.1", in file ".github/workflows/codeql-analysis.yml"

v3.28.10 
Release published on the 2025-02-21 16:09:59 +0000 UTC at the url https://github.com/github/codeql-action/releases/tag/v3.28.10

# CodeQL Action Changelog

See the [releases page](https://github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs.

## 3.28.10 - 21 Feb 2025

- Update default CodeQL bundle version to 2.20.5. [#2772](https://github.com/github/codeql-action/pull/2772)
- Address an issue where the CodeQL Bundle would occasionally fail to decompress on macOS. [#2768](https://github.com/github/codeql-action/pull/2768)

See the full [CHANGELOG.md](https://github.com/github/codeql-action/blob/v3.28.10/CHANGELOG.md) for more information.
v3.28.11 
Release published on the 2025-03-07 16:09:59 +0000 UTC at the url https://github.com/github/codeql-action/releases/tag/v3.28.11

# CodeQL Action Changelog

See the [releases page](https://github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs.

## 3.28.11 - 07 Mar 2025

- Update default CodeQL bundle version to 2.20.6. [#2793](https://github.com/github/codeql-action/pull/2793)

See the full [CHANGELOG.md](https://github.com/github/codeql-action/blob/v3.28.11/CHANGELOG.md) for more information.
GitHub Action workflow link

deps: bump sigstore/cosign-installer GitHub workflow

deps(github): bump Action release for sigstore/cosign-installer from v3.9.0 to v3.9.1

change detected: * key "$.jobs.build.steps[6].uses" updated from "sigstore/cosign-installer@v3.9.0" to "sigstore/cosign-installer@v3.9.1", in file ".github/workflows/release.yaml"

v3.8.1 
Release published on the 2025-02-20 15:20:08 +0000 UTC at the url https://github.com/sigstore/cosign-installer/releases/tag/v3.8.1

## What's Changed
* use cosign 2.4.3 and other updates by @cpanato in https://github.com/sigstore/cosign-installer/pull/182


**Full Changelog**: https://github.com/sigstore/cosign-installer/compare/v3...v3.8.1
GitHub Action workflow link

deps: bump github/codeql-action/init GitHub workflow

deps(github): bump Action tag for github/codeql-action/init from v3.29.0 to v3.29.1

change detected: * key "$.jobs.analyse.steps[2].uses" updated from "github/codeql-action/init@v3.29.0" to "github/codeql-action/init@v3.29.1", in file ".github/workflows/codeql-analysis.yml"

deps(github): bump Action release for github/codeql-action/init from v3.29.1 to v3.29.2

change detected: * key "$.jobs.analyse.steps[2].uses" updated from "github/codeql-action/init@v3.29.1" to "github/codeql-action/init@v3.29.2", in file ".github/workflows/codeql-analysis.yml"

GitHub Action workflow link
Updatecli logo

Created automatically by Updatecli

Options:

Most of Updatecli configuration is done via its manifest(s).

  • If you close this pull request, Updatecli will automatically reopen it, the next time it runs.
  • If you close this pull request and delete the base branch, Updatecli will automatically recreate it, erasing all previous commits made.

Feel free to report any issues at github.com/updatecli/updatecli.
If you find this tool useful, do not hesitate to star our GitHub repository as a sign of appreciation, and/or to tell us directly on our chat!

@updateclibot updateclibot bot added the dependencies Pull requests that update a dependency file label Feb 10, 2025
@updateclibot updateclibot bot closed this Jul 10, 2025
@updateclibot updateclibot bot force-pushed the updatecli_main_75bba88f02d598aa1c677386f95e52cad73c9dfb05c65bf6bd87395d6e33aaca branch from 72cc22e to 5f057e4 Compare July 10, 2025 09:08
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants